5f7ad15e40e72f847797a0e8c3779de8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5f7ad15e40e72f847797a0e8c3779de8_JaffaCakes118
Size

3.1MB
MD5

5f7ad15e40e72f847797a0e8c3779de8
SHA1

5c76a15d4c52fee4d8de78fa074cf78e7f0b48ba
SHA256

2f28e738211f539a294f5c3719ebb007b5ad4bffbd46eb5ede44eebde280e4fb
SHA512

b4768a37cd171e12e248c1a3a11cbd0a24f0e7202b6e0ab9e37587ab9adf63b55dfdbe45e96de4146e1a51d23f36c6c41ee9739cc6cdd666fffebb19df68db59
SSDEEP

98304:2OiM5WZqlj9nEQIDB2+GEE2457+ixHM63nKRJnd:b5TlBEQ2BlGEw57+Q6RJd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f7ad15e40e72f847797a0e8c3779de8_JaffaCakes118

Files

5f7ad15e40e72f847797a0e8c3779de8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0ddbdd895c81514f4f577efc720adb59

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32 rasapi32

UnhookWindowsHookEx n�C

Sections

.text
Size: 1.6MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ