7267d2e89f66e37ddd0cdfbf6cee811e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7267d2e89f66e37ddd0cdfbf6cee811e_JaffaCakes118
Size

54KB
MD5

7267d2e89f66e37ddd0cdfbf6cee811e
SHA1

b30bf3192727801265ed153a72460c63b1c588f0
SHA256

64cf7db020c8d62bf799bcf984ecbce8b443c4fa7ae86c5ae22d0f23b7c8abeb
SHA512

3c4b02c77d0a6043ccfd54ca5aeb053949a28ab4405c96ae54cec4bf9e274fdac82ddc93dc79f37cfb1beaea31de02f319d396d62d03390ea276610a1e3b0e6c
SSDEEP

768:Hk9hFdSq5o1dB+x615vOgxvTcTz7aKJX3FmFLpTzwFIFwyhHWE2sjl3T:Exdl5sKknLxcTyumNT08hHHjl3T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7267d2e89f66e37ddd0cdfbf6cee811e_JaffaCakes118

Files

7267d2e89f66e37ddd0cdfbf6cee811e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

09d0478591d4f788cb3e5ea416c25237

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.data
Size: 48KB - Virtual size: 976KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE