3a51d89252245350f0b8b80e3d9a4520_JaffaCakes118 | Triage

Sharing

General

Target

3a51d89252245350f0b8b80e3d9a4520_JaffaCakes118
Size

328KB
MD5

3a51d89252245350f0b8b80e3d9a4520
SHA1

8ead3ba3ed96422af8476f301c50295bea2e1ee1
SHA256

1447f7ff8819748d709a0f813c72f3146e9caef6c18b1d1faafabe2bd26dd96b
SHA512

38f62ad6bd4af1c5ef6c8d295828a0d141bbdcb5230e937e7be7f6c3986e03160ec701e88eeaeb220f968736009c67ec48e97908eef08528df945859f3816c7d
SSDEEP

6144:EPDZr85VXQ2s60DYQxFYzbpkEkH6BiQl/8VwOi5SKO+oib4Y7OeCLK5QBz:EPDZr85VQ2f0sWYzb6E06BiQl/DOi5d4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a51d89252245350f0b8b80e3d9a4520_JaffaCakes118

Files

3a51d89252245350f0b8b80e3d9a4520_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d29c18eeb8cd12ce6d6673abc8994fa8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
GetModuleHandleA
GetTickCount
GetProcAddress

user32

GetSystemMetrics

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 259KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yrp3imcm
Size: 60KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

q7bxtxix
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ