74518231b19063d5d4d93535505667ef_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74518231b19063d5d4d93535505667ef_JaffaCakes118
Size

18KB
MD5

74518231b19063d5d4d93535505667ef
SHA1

513eb3a14a0af16dfee478fce89d5fa58bf5cc1a
SHA256

fe21c337c96ef03e0c6abb14513ce0605339a7318ac9ddb090a708fc56b33ff3
SHA512

73c90d9d4337e312a55a52239e56856c14cc46839f218e4bd56e3c88d82ca66b60738bbd8dc22488e5b978b711c892651e1ea8f25703e10698af987dcf76568a
SSDEEP

384:4d7TdI03iXtmwIc9iAXTL2hdOEyTIdl2kSz4:1tlIcRPKOt62s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74518231b19063d5d4d93535505667ef_JaffaCakes118

Files

74518231b19063d5d4d93535505667ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6774167125e28b4eb5b72e61db726fee

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetModuleHandleA
LoadLibraryA
FreeLibrary
VirtualProtect
ExitProcess

user32

CloseWindow
IsWindowVisible

Exports

Exports

AddIwsixyuwbya

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.virtsec
Size: 1B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 552B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ