89ca2bd5bfcbb91c684312e953f26f33_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89ca2bd5bfcbb91c684312e953f26f33_JaffaCakes118
Size

50KB
MD5

89ca2bd5bfcbb91c684312e953f26f33
SHA1

99a9a70ceb14749edab14e581a743a30c2090318
SHA256

071b3fcbcbc822bdb5141554a878d751a99e4065a5545bc98bf1e88638fa26ad
SHA512

1125cc369ebf337f368734549a10ccd659118bc57c3c7773db2ab317e83a9a8db6d66720b24a9309c2f25e503fa1c8f0cb58fe148183bf4a516cc73a6941229b
SSDEEP

768:V/1OQiph+kngGeDi7nT58DMTrZhI5/uGiUBruPbwF8TZhWzmrLOOkjn:VMb3AuTFsMhId/BrAwF0hJvkb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89ca2bd5bfcbb91c684312e953f26f33_JaffaCakes118

Files

89ca2bd5bfcbb91c684312e953f26f33_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_TEXT2
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE