77665361437f0f270caabbcb79b4bdcb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77665361437f0f270caabbcb79b4bdcb_JaffaCakes118
Size

180KB
MD5

77665361437f0f270caabbcb79b4bdcb
SHA1

bb236739128c62f7601d728fa24b330c391f3615
SHA256

bb9860e0546fc1762c43ab369268e0a64dca519cff00f733458e1f93c98c286d
SHA512

a6e2368525499e7ba7617d2c91f8b8315250fdc1f6c48305b9c95f5ec4c2e2d42039529d470a610d559c8088d70ad8587bc732d54d34a3e33b4b00831e49be23
SSDEEP

1536:HcV6HGavqga18rVKsLIbJRqYVjsZczhIjcLfxfflWPCw:HcVqnvHrBm0YVjsZYh/VfflAH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77665361437f0f270caabbcb79b4bdcb_JaffaCakes118

Files

77665361437f0f270caabbcb79b4bdcb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c6bb0de3943eb1bd41df2be358de09c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetProcAddress
GetModuleHandleA
GetTickCount
ExitProcess
GetStartupInfoA
GetCommandLineA
HeapAlloc
GetProcessHeap

Sections

0
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE