37c452ed59b5e96b3a44495b2ffb11ce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37c452ed59b5e96b3a44495b2ffb11ce_JaffaCakes118
Size

6KB
MD5

37c452ed59b5e96b3a44495b2ffb11ce
SHA1

e6a19520ecbb1d73ac5adeb4924b15be1a886561
SHA256

32423b9a40e372bf8a249ce61d8f5fa227462012149db39c83c7c9e1ba208b52
SHA512

d4281bd9c03dcf2c42c4401cd8838f8a0745de84f291b741d5e7f0326ce52e2968c5273954028894b5a1913f1740a913e4827fb1ab2d78f608534bd4917f1d9f
SSDEEP

96:z9QoCP7Nlz56kNhhJ35qwSi27C1WQ8BNBa5R7lNIUWVZtOh:BaP/VNhhJ+rDBNBa5RRNSVqh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37c452ed59b5e96b3a44495b2ffb11ce_JaffaCakes118

Files

37c452ed59b5e96b3a44495b2ffb11ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0c12c1d512453ee9c2574ef52bc5167b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
VirtualAlloc
GetProcAddress

psapi

EnumProcesses

Exports

Exports

getBuss
getCuss
getMuss

Sections

.code
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 379B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE