4a600f5779f63713d3c73fce74eb7afc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a600f5779f63713d3c73fce74eb7afc_JaffaCakes118
Size

245KB
MD5

4a600f5779f63713d3c73fce74eb7afc
SHA1

e3f4f5a02e5fe4e99e5d3401c37fc9e793e2c019
SHA256

4f226d64e7083b0cb7e36076edd76520498e95cb24380bbd469b13e46096b7ad
SHA512

e90d65c72d26d6d6d7f5eeb5e8122d0f87a349ab17c641417b253ffb6c32b9e73a5495415041a61866ea70d8ed08b753c4d515413431eb1a6e2e979e7cd73801
SSDEEP

6144:vHcDOLkLpOQeuZBWH+3s3YSKCmC3G9lisOdvXP5Az1W:vgOLkVOQeuZB4Plh29eP5A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a600f5779f63713d3c73fce74eb7afc_JaffaCakes118

Files

4a600f5779f63713d3c73fce74eb7afc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress

Sections

.text
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 980KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE