87696af7d7e6e5f787d25f4117283ef2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87696af7d7e6e5f787d25f4117283ef2_JaffaCakes118
Size

118KB
MD5

87696af7d7e6e5f787d25f4117283ef2
SHA1

97a062a3919577a1a067817a520d34e98aa31210
SHA256

f22629b416ce78cc57a06ee3743bf56bd764e903efdd82df6ef69b565af7703a
SHA512

07169a0d7aee08f34e2215becc59171117ed3c866f8b1488be100a11b77e97fccb9aa7b0eb6bc11f08b0b6df399d531d384ae80402514e06883b8dbb31d61e4e
SSDEEP

3072:A2h1Lfvn/xv911hcC0vzM40psvvC2beM++94BiaUL:71LfPNL/kvziDieM++9Tai

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87696af7d7e6e5f787d25f4117283ef2_JaffaCakes118

Files

87696af7d7e6e5f787d25f4117283ef2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5a1138d94b54c5a16e336f57dc47a7ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
GetProcAddress
LoadLibraryA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rawdat
Size: 107KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE