66e1765022a6bb614eb49d786da1eb3f_JaffaCakes118 | Triage

Sharing

General

Target

66e1765022a6bb614eb49d786da1eb3f_JaffaCakes118
Size

65KB
MD5

66e1765022a6bb614eb49d786da1eb3f
SHA1

ac554f4e75d85df28b644e034c0e8bc59d90d86f
SHA256

71544b7bd819c88fa230d6dad68a5c121d72d86e479c673ddc7c8d069aa1eff8
SHA512

39f6cf655fb11fd3104e55a5f0e4cf08e6cc1514f418d89996b46a825675cc93dadc396e7d65832cebf8ba3e2e86811fdc97d5486d6f5ff345f2b71fbd5f79a4
SSDEEP

1536:bTeflvJvSEaIVKzOEptesXv0C/hODy5DEOlvXlvIY1BT:0ReX9M0h95DEo95

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66e1765022a6bb614eb49d786da1eb3f_JaffaCakes118

Files

66e1765022a6bb614eb49d786da1eb3f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2b11402c8dabceb7ca2a2840d980ed4e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileTime
OpenFileMappingA
GetFileSize

user32

CopyIcon
GetDC

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 214B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ