710c0aced061d7d3b90949820de209ad_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

710c0aced061d7d3b90949820de209ad_JaffaCakes118
Size

604KB
MD5

710c0aced061d7d3b90949820de209ad
SHA1

228f307735f0df479b1cf5d8abce930499e7a850
SHA256

81d2dcfc7296f61133ce836c84d797c43c173869d51767436c89363fd7669ec0
SHA512

fc62ee033b2c46a2b25ad4c65b43c001e39e8c08a6d1b989ebff8018c9e0489ed996d2a4e6755b3af63c18dd23a5c72313cda48f63b9c7573a81d13430e15d9c
SSDEEP

12288:/GLEI1OCLmdk4rDKkDrv+KUxYvfB0jSjeOlBScToXridtP:+LEjCLmq4rPvGxkJ7jrfY4tP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
710c0aced061d7d3b90949820de209ad_JaffaCakes118

Files

710c0aced061d7d3b90949820de209ad_JaffaCakes118
.exe windows:4 windows x86 arch:x86

87bed5a7cba00c7e1f4015f1bdae2183

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress

Sections

.nos
Size: - Virtual size: 244KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ