733723de6e013ac0f35232f704645676_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

733723de6e013ac0f35232f704645676_JaffaCakes118
Size

124KB
MD5

733723de6e013ac0f35232f704645676
SHA1

2157f41b990c71a872a21aa547dc70891f3205be
SHA256

0c6ab31fd44af4626fbde58b4bb68cc3f6426eb22dde84cd21f3c7d02f4dd2f9
SHA512

ae8270da33846f0207140fc69245e3688d853f0b6937b75e1f5036cd46453796efcdbf75664e48e56c7b1c39e5bbac93fbe60a990ab6f0918638a919726b6e16
SSDEEP

1536:S0YcExK+pXTpUwNEk5ZOEK2yYKLqvjGjIQlNBmtn+oSgWPEk6cwv6MFM5jQtNu3I:S0YTg4kGqjIwS+o4PsTxGx3gOulj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
733723de6e013ac0f35232f704645676_JaffaCakes118

Files

733723de6e013ac0f35232f704645676_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rawdat
Size: 113KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE