37cb7afb22bb1c186e9dbe0caa464887_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37cb7afb22bb1c186e9dbe0caa464887_JaffaCakes118
Size

445KB
MD5

37cb7afb22bb1c186e9dbe0caa464887
SHA1

1ff69a5480f3bbce40cae642d5411612e98e3bab
SHA256

f57d1064d38e846bd328d4f5e26d38a944f6174301d5ed9b0603b661dbad8465
SHA512

8d20163ab199ca2db15add8edc90f7f5352ed3a4331455da58cf29650a3a3bde282f4a8d2dcdad0f7f4cabdea31162c40cd5db4ac34fa92d5e7f9bc0ab24f9f4
SSDEEP

6144:AssD/j9ircZO/SN9RTAjLCjF3kNLaz97PHHHtlsACbaPOSUqiFRJ9MUsd4:AznUrcZO/SN9RMjWjF+uJ7vHLsyP8dj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37cb7afb22bb1c186e9dbe0caa464887_JaffaCakes118

Files

37cb7afb22bb1c186e9dbe0caa464887_JaffaCakes118
.exe windows:4 windows x86 arch:x86

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

0
Size: - Virtual size: 824KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 270KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 175KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE