3e1b6de62af4ab28287b55f633f0d4fb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e1b6de62af4ab28287b55f633f0d4fb_JaffaCakes118
Size

34KB
MD5

3e1b6de62af4ab28287b55f633f0d4fb
SHA1

bbe462990d6930dfa259d95e461ccd77d8a830d7
SHA256

459189fc47e1792a8517878b1482b871d022d50ab22a969e0b88f4fb990c10b3
SHA512

cf7b8572bb3fdbb0a08d70d7e169ab890e7b4babdd8e842fb95b67ae365636d8d80ac32a5afc82e516c75f61c476ee9948a6eae4ca513cbdbb48adcf10a874ba
SSDEEP

768:IpuBxXIe0Q4uNzip4TJMzZ4sResiKaSVlNVjpj5ehaXQn:IoXm+2p4lsRema6J3Qn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e1b6de62af4ab28287b55f633f0d4fb_JaffaCakes118

Files

3e1b6de62af4ab28287b55f633f0d4fb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b48c08c2b91cbeb00081797daf9dfe8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
SetHandleCount

Sections

WIN0
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WIN1
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WIN2
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SUE
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE