4b7935b701dd44153974af55f4f5b6da_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b7935b701dd44153974af55f4f5b6da_JaffaCakes118
Size

124KB
MD5

4b7935b701dd44153974af55f4f5b6da
SHA1

dd36ea3787960fb9a8e7f5c0c324a4b972541739
SHA256

5d76cc4c2590ac919d8a2269d215a499c92a75a9b92569fb058a2c098875187a
SHA512

52f739750f92f5ea2bfef57edb0f3759524c985b96dbe0c44b35f71f9d506f614699114388818ce61b2b5f3172f8ffae8d9d414b43aa3235fd9b8d5185bf3e8b
SSDEEP

1536:S/V4oxEBNwMmRK0riCX3udovK0bV90bsOemo2lhk1Y3MJGsgCRejEC6dlMxuHbgd:S/mo0mMu90aV24f2XN8s4jMxA61Tf5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b7935b701dd44153974af55f4f5b6da_JaffaCakes118

Files

4b7935b701dd44153974af55f4f5b6da_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rawdat
Size: 114KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 511B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE