8480a79bc4fd66c04d36325ce79f964c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8480a79bc4fd66c04d36325ce79f964c_JaffaCakes118
Size

110KB
MD5

8480a79bc4fd66c04d36325ce79f964c
SHA1

639aa2d53a013c8e140e236aff705a35a5e0fe3b
SHA256

c87649c034ac13f2fbd65074aad2916cfe4d930feb53c0eee7db7409640c3c22
SHA512

b25d750a526d8034f03a1dc8f0b88bffa08fc8b1f0722496f7fd19b72833e821c56c915688a193e1e7f0430fd80aec99fc7d3426db29da5a9fa6f7bd4046304c
SSDEEP

3072:k7DqyzzRgyM0dsMl5V1sZ7CljwWaVxZMybqMcZzxm:Ys+V1k2QVsnMYx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8480a79bc4fd66c04d36325ce79f964c_JaffaCakes118

Files

8480a79bc4fd66c04d36325ce79f964c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2f3c5da38e687ed8e68cd2b55dbd54f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kylin
Size: - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Np
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE