78a3ffaf35908f2bb883913a17b169a4_JaffaCakes118 | Triage

Sharing

General

Target

78a3ffaf35908f2bb883913a17b169a4_JaffaCakes118
Size

44KB
MD5

78a3ffaf35908f2bb883913a17b169a4
SHA1

7df75c983e640e1f7c4f27a79c1a9982bf4eeaff
SHA256

12d41a887f16271733fe7e07f3d3f4b146709cdc12efa09a56a410d7d676069a
SHA512

a19c723d926b105ea2ef2ace3f651ae676c505157a6a8f7efce5c1b1e0147ed2cc65ed15660f293a78a850a1e4c64191c473ea80e8c404f9bdec8ca5b506d339
SSDEEP

768:tDDXvbplb/jH8gFI1CL/X3nI3PhvV16xoxC2guhiuIvr2wOQysOw:V/bpR/T8gG1aY3Ph/+J2FcuI/Ots

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78a3ffaf35908f2bb883913a17b169a4_JaffaCakes118

Files

78a3ffaf35908f2bb883913a17b169a4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

647b2d25b4821905b4195ff7a6455b54

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress

Sections

U[0(b)%Z
Size: 512B - Virtual size: 96KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

luW2U87e
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

"FeNCkco
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

^v_HcV.M
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ