5c24b1e4f35beae875f4d90514c8e08c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c24b1e4f35beae875f4d90514c8e08c_JaffaCakes118
Size

80KB
MD5

5c24b1e4f35beae875f4d90514c8e08c
SHA1

8d51547edb5b946529fed77e55b6167c5cafba9f
SHA256

05361796c131e1ea9a15b689b5d93aabc328a4ac48e7e22e26e21b71354a9f97
SHA512

914b50ab0ab6bce8eb4862faf9b5bd1c529af2d56ff7b1b1e7f467ad3a7c382c568e3b0deab975d67ebf7a6db4a3e0725ec74510f6be0baafa60a81ae80ca5d4
SSDEEP

768:0KzXs9g/GMeZ7RFYDnkpDGJdXYwggORyb1Y0ICiekl5B52UXu4FuV2+zHH0rBZBC:04GMmwAPgORcFdieuKX9V2+r0rL9vpvg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c24b1e4f35beae875f4d90514c8e08c_JaffaCakes118

Files

5c24b1e4f35beae875f4d90514c8e08c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5956d710a9aca8a8bb88faec16ed2f9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
VirtualProtect

Sections

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE