76d5ed8e4bf167c2596bc43910ff519e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76d5ed8e4bf167c2596bc43910ff519e_JaffaCakes118
Size

107KB
MD5

76d5ed8e4bf167c2596bc43910ff519e
SHA1

5aba07d94e4f092e1bf71040ced2918b275aa8d4
SHA256

c13f1a6477132531f3c1e7917ad4ef2b70cf5673d3203925d01c0d562baa340d
SHA512

7fb1e75792d414c7483a3c919f6f6b6e69647584d61e979d98c9c7356874133af4d1f58830dc7e2938e9b6b6a31eb22c3fe875b44e4b41eb1eada2dcd1c5d1f5
SSDEEP

3072:Hv5Az+eZXAvIISbdn31tqRfpaKvqSEaxG6F:HvONP3Z3X0fpJdEaxd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76d5ed8e4bf167c2596bc43910ff519e_JaffaCakes118

Files

76d5ed8e4bf167c2596bc43910ff519e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9d52138d14be096a9302c771419acb28

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
LoadLibraryW

Sections

-
Size: - Virtual size: 111KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

-
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

-
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE