6f06e39cb6df0908d5ab6e661c6b0386_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6f06e39cb6df0908d5ab6e661c6b0386_JaffaCakes118
Size

246KB
MD5

6f06e39cb6df0908d5ab6e661c6b0386
SHA1

9e8000cf917a0e46c8b832a191bff44991ad6d6b
SHA256

922a7d3c82c4782f9795a82271df3be8628eefa6a0fa104caad7472772f5e43e
SHA512

3c2a437d60809efcfe08fcff4e9159fb88c088ece84d19177048223abba68adc46a804a1153b98ee1e8274c996cd5b7b28de46a94651f093263d18863e663a99
SSDEEP

6144:/xrEmcTGAdTulF59LooSF/0VqsInWYINgpUgdFY:+sFF59L1SF/WqjxpU9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6f06e39cb6df0908d5ab6e661c6b0386_JaffaCakes118

Files

6f06e39cb6df0908d5ab6e661c6b0386_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress

Sections

.text
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 980KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE