8d18a3d09649a480279a2f85e85116a6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d18a3d09649a480279a2f85e85116a6_JaffaCakes118
Size

35KB
MD5

8d18a3d09649a480279a2f85e85116a6
SHA1

63753d225ee360ff51f6877de684497b16929547
SHA256

fee005adf38e4584242d94b971b02f1b28454ce170dce8f687f30fec2a057fec
SHA512

f59e431dc30d6866c455178fd93bd2976144f724f2d504fa7133515aa51423e7e16af698c597d5f5136007b99c64992a0352ef3260c6206022247c076589fd69
SSDEEP

768:AvU7Wv8o9e6W76lQfXk9fP+dU2++REqDO+lh+j:AvU7WEurhTZR2bOR+lh+j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d18a3d09649a480279a2f85e85116a6_JaffaCakes118

Files

8d18a3d09649a480279a2f85e85116a6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8111320f794d9e62a7ffe5d84bed59a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualFree
VirtualAlloc

Sections

hmimys
Size: - Virtual size: 584KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hmimys
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hmimys
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE