62008aeabd3cced53fa5bfdd43be550e_JaffaCakes118 | Triage

Sharing

General

Target

62008aeabd3cced53fa5bfdd43be550e_JaffaCakes118
Size

13KB
MD5

62008aeabd3cced53fa5bfdd43be550e
SHA1

910b0027758cd9e47348ffe0a5a7975912120e88
SHA256

b63fcbbb3be9adf7afaf691957514b03ddbbd791b26e08ed88847fc1e2e16139
SHA512

11e1d57168363a0166165fac590b42417f9053e9ee2a21029ff8b80d913746bf891d299f2258a4d93b4e34cc9331a1f39ca658eb89165eacd0bfd1df8ed9f8ad
SSDEEP

192:7VALYUTrawlHm5PrUji4CtYsn4mWY/9apL0RPk2VUlLgFI9Vy9rubUN38e2hg:uLda+GVUjikZw/9uLFTLgFmV2rubxu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62008aeabd3cced53fa5bfdd43be550e_JaffaCakes118

Files

62008aeabd3cced53fa5bfdd43be550e_JaffaCakes118
.exe windows:1 windows x86 arch:x86

51b2dbf6281079a082225b6210266206

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
IsBadCodePtr

Sections

.text
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE