83360b9cfe6992af3505c3865eb08806_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

83360b9cfe6992af3505c3865eb08806_JaffaCakes118
Size

2.6MB
MD5

83360b9cfe6992af3505c3865eb08806
SHA1

f108c30c7a5ef78d2f9f53ee385aea011f9fd6dd
SHA256

43c07cd6812338ec6fb4db4faffff8762026bbb930158b2303e7a75a54301351
SHA512

95b144e89562a8ab18b0f0c57086775e2e9c0bd6363c4743cf3a7f6c320a0a433f8584a0f5857ce306994b80961a74d70eda6171feb51d61ff3bf3471dde7f83
SSDEEP

49152:8FxBCkvUlcoNs2fvKxdhZDpACy9sz/NrhMM/j71WiPeZ:GTNEJIH49sprz/j71WiP0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83360b9cfe6992af3505c3865eb08806_JaffaCakes118

Files

83360b9cfe6992af3505c3865eb08806_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b5612e99c648c99574f8ebc51bb2ee42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetVersion

Sections

Size: 314KB - Virtual size: 716KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

olibnuvl
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jwvyjhwr
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE