34b7badd46242a90b9bf692b8592f0b6_JaffaCakes118 | Triage

Sharing

General

Target

34b7badd46242a90b9bf692b8592f0b6_JaffaCakes118
Size

638KB
MD5

34b7badd46242a90b9bf692b8592f0b6
SHA1

49ab572ec0cb772bfeed5178941d5072ed9690a3
SHA256

f050d25825a60d27ae0e61e17d70af554b6c9996d44be73e7ec88ebc5878a322
SHA512

b45db81414cb662e517473d7fb9bd44905063c0ebe47f2324827c7c2e9172434fa790eb1b77928bedaa62739c95550354f3711f94f2487536f290759e163ebcb
SSDEEP

12288:xVa8MMQ9cXwUOXZ4vVhJUDp9tAr9TCruboy4nD4iu3U1OeeDwTgEF2zf+ZYcAl0s:xVa809cABXCvVvM9tOBChygolkMSpZdW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34b7badd46242a90b9bf692b8592f0b6_JaffaCakes118

Files

34b7badd46242a90b9bf692b8592f0b6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5956d710a9aca8a8bb88faec16ed2f9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
VirtualProtect

Sections

Size: 512B - Virtual size: 24KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE