8980893c14e2c8759899542a28a8279e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8980893c14e2c8759899542a28a8279e_JaffaCakes118
Size

1.1MB
MD5

8980893c14e2c8759899542a28a8279e
SHA1

db3a51dcf34666437d25ff3d548cd58490e88f50
SHA256

050c2cbb64b41538844370eaf8a1cffbf53856ceb480d00d9ec6b1b90e189061
SHA512

97aad7596852d6e2a5fc36a04ee8b08f5a2bee69a30573c592e356f37122236996b2446d65471ec20a50420d1924e8342a916a95956091b816568cfe93ac0dd7
SSDEEP

24576:x3czlKui7OFlNwxf6WxKxtWP2n4jgl7e:LZ7NIWx4Ln4jIe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8980893c14e2c8759899542a28a8279e_JaffaCakes118

Files

8980893c14e2c8759899542a28a8279e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

26c2f76ec8f727a233693baa8818cd3b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetHandleInformation
SetHandleInformation
VirtualAlloc
VirtualFree
GetCurrentProcessId
ExitProcess
OpenProcess

Sections

.text
Size: 758KB - Virtual size: 758KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 374KB - Virtual size: 373KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 33KB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ