423cb250060381d93a1c04cc29bb5dbd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

423cb250060381d93a1c04cc29bb5dbd_JaffaCakes118
Size

214KB
MD5

423cb250060381d93a1c04cc29bb5dbd
SHA1

29f11a78dba3f77b6bdfcac812304900ec67d1db
SHA256

91a7fe03ec67d164a70e7f213220386dce46e7d397f6bc1d98db2932466665dc
SHA512

f06bf11663f6d60aedc790ba03943da7bdc881b107d8780a66de92480ff6848d44731b6b11121163d3b20524aa2348e339f543ead7b8c66373e12e2941686cb5
SSDEEP

3072:QSjnyI0j6dCLvXkQRdZZfYRq0BaI8RztHTkJd3m9Ht7ANkCjeRwl4R0DWbEBKe/h:QI0j6dYdZwjgIWtHYKkNhjPaIMY4E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
423cb250060381d93a1c04cc29bb5dbd_JaffaCakes118

Files

423cb250060381d93a1c04cc29bb5dbd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7bcb4be8a284e4ec65e8f7af4ff9f3bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvbvm60

ord696

Sections

.MPRESS1
Size: 63KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ultra
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ