60054438797e5a318e898cb53c42165b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60054438797e5a318e898cb53c42165b_JaffaCakes118
Size

161KB
MD5

60054438797e5a318e898cb53c42165b
SHA1

8687ebe244e18b27c371ca86ec6c46f4cf7490de
SHA256

470f1a74a2694bd64fc30b2bd66d5e4134ec575d427b19ca11ed96d2e8bbf651
SHA512

a2e05da247e9ae0a168139ea9f7c09474dda525b5be8903b35928e199aec0b958f7cf96c6f6c7b0117976c539fce76b792c1ba912ff83bb489460736408ae888
SSDEEP

3072:+R6qqlzNJYDw+2ZaN286M8h6SFPKtNM7q50CEB8ghY7N:b1PK2818fytNRWCUxhYR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
60054438797e5a318e898cb53c42165b_JaffaCakes118

Files

60054438797e5a318e898cb53c42165b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6e1c74eeaafa9cd7ecaf89dd9cee47b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
ExitProcess

msvbvm50

ord580

Sections

.shrink
Size: 512B - Virtual size: 560KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lame
Size: 157KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.peshit
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE