85102ccd5361aa8202a8e7f3be43300b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85102ccd5361aa8202a8e7f3be43300b_JaffaCakes118
Size

38KB
MD5

85102ccd5361aa8202a8e7f3be43300b
SHA1

6d788136dcab3309c32b8f515cd0f15f9b2b47c0
SHA256

eb0ceba200291bb00e0f8ed62d3f72ea2ca6957008cef43cd0c19962291c2931
SHA512

f811ad20b8db70894a813b4b037bc42c5923583f32924e94bf69ba6051c06081d1993a34bcfba978914e4c6314891f015bc13b5383db537d3da338a852492f45
SSDEEP

768:NFe7tEyaKaorzIgQGgV7qw2qqoAYQW8UnYI:ncaKaorzIgzgZqw9qRYQIYI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
85102ccd5361aa8202a8e7f3be43300b_JaffaCakes118

Files

85102ccd5361aa8202a8e7f3be43300b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

GetOnlineLoggerState
GetPluginDirectory
SetOnlineLoggerState

Sections

CODE
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 44B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ