35e6f116f7dd250d2486e466132e37a6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35e6f116f7dd250d2486e466132e37a6_JaffaCakes118
Size

115KB
MD5

35e6f116f7dd250d2486e466132e37a6
SHA1

088ea90faffc171e54deab846d8bd547038fdc2d
SHA256

219d7e9cdc997f3f907cad728c96bbc2a15f36097d04e52593064d04a1a8788e
SHA512

6766a907b3bb158817f7e99462b09520b8e194dd9cc28fbb87b4f168c2b83a63a6cfcfc662f365398e1f1fffeb57c8cd7c8607b4f97f740d85b24a6ade605b6e
SSDEEP

1536:u0WYEPwdMexZhrOaASHs37UCqiExeSFBK1tQkGEjevojBTZ:u0zMexZhr1ASM37UCqN8S3gt0W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35e6f116f7dd250d2486e466132e37a6_JaffaCakes118

Files

35e6f116f7dd250d2486e466132e37a6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f0f616de511fa57eb9f6da25ef8f88f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualFree
GetOEMCP
Sleep
ExitProcess

user32

GetMessagePos

Sections

.text
Size: 512B - Virtual size: 270B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Oujcqhfd
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Pajxhu P
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Xbfjws S
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 229B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE