3adb3e97df6819e4abd381d056b613d4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3adb3e97df6819e4abd381d056b613d4_JaffaCakes118
Size

45KB
MD5

3adb3e97df6819e4abd381d056b613d4
SHA1

db8369e106457da98c81c5c609bcdab7d550aba6
SHA256

416c3f8a5e0674d608ba87d4d8a9b325b2a0be584b6c692b703703d90b311954
SHA512

b81803f09620f96ed9b10e6528ec258ae1cb3f104b5d9c65bb028499502a863afc7bdcd8379fc859ba350fedbc36c65a38457e937606174198a8e72724cea064
SSDEEP

768:QCESIM+h2Bu2wueFoKYHXKQWbSEF5BZfFYfLQZxkevhWnCFrErufz9cRDcKx401v:QCE9M+h2uFo7aT6EtknU5fz6cKh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3adb3e97df6819e4abd381d056b613d4_JaffaCakes118

Files

3adb3e97df6819e4abd381d056b613d4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_TEXT2
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE