758b72b4a2cdb20f2014911039220950_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

758b72b4a2cdb20f2014911039220950_JaffaCakes118
Size

51KB
MD5

758b72b4a2cdb20f2014911039220950
SHA1

76b8ef0818a3e3c915dab73ca8861c979210f78a
SHA256

501ccc8229401443bb85163cfd4bc7029b7315d45f4163bc7e65d44eb7037d37
SHA512

3106f06add9b843682862e24cf52ba0329d01b6bd01efb589f2aecb76259ef19b4ed7f60f1af2dd12b8c4b7f69e77575a381a3b3bc66e8d278eed561d8542479
SSDEEP

1536:ijv45uHMqn9E82i1SbWu5Fix4/sdyv2Ez:ixJn9E8mExksdy3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
758b72b4a2cdb20f2014911039220950_JaffaCakes118

Files

758b72b4a2cdb20f2014911039220950_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_TEXT2
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE