3e4945850217ac4defd05de91fc06f03_JaffaCakes118 | Triage

Sharing

General

Target

3e4945850217ac4defd05de91fc06f03_JaffaCakes118
Size

87KB
MD5

3e4945850217ac4defd05de91fc06f03
SHA1

2aecc266297f8628b414b4be640126b8cbb113f6
SHA256

f05a79047fafa61a2e24698442d78cf76a0a3f57312fb3e5cb6c8e47d493e3ba
SHA512

373ba860c48dca256c51103c779813f578c1fe8964d3abf93c70dbe6f00ea1a1603ee209f4adbbfe917c6b65278775521edf86d2a71b0a2dbff10dea5857e02a
SSDEEP

1536:OhiTzF35Me+9KjYQyCoO32OZ6I9HKS8JYx+7WzqCQ7Tmt0KPwIrH7Oi8Adnbg5py:mQJ2mjTyC0uT9CJU+lCQ7A0K4IrH7/bp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e4945850217ac4defd05de91fc06f03_JaffaCakes118

Files

3e4945850217ac4defd05de91fc06f03_JaffaCakes118
.exe windows:5 windows x86 arch:x86

640d2bdf4d2adff672e98fe192bb079b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitializeEx

kernel32

LoadLibraryA

Sections

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ