41ae904163c08e25fb095e7ca0bf45f9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41ae904163c08e25fb095e7ca0bf45f9_JaffaCakes118
Size

59KB
MD5

41ae904163c08e25fb095e7ca0bf45f9
SHA1

3e707c242d4e01a9500df6acfba67053151b3c82
SHA256

d331833213f3c3792e100b487b9ec8bb96a4911e89e5aab3041382f99dee35e9
SHA512

1ef78d1544365bf39b17fad9c6f7ba25010ea82250300d5877a196b8eba6e8de918a4fc72e5b1cfdf103c6a2fe2cf1f09d48e80ec4a7c72fb72009b72467deb1
SSDEEP

1536:uXnKBSYoerJ+tE/GjyKbfDTxbYGY5GHn:uXK4Y0tE+DbfDFM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41ae904163c08e25fb095e7ca0bf45f9_JaffaCakes118

Files

41ae904163c08e25fb095e7ca0bf45f9_JaffaCakes118
.exe windows:40279 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

aaarajij
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

ijabrizz
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yjazayba
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yzjiajiz
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ