9524159f5d8bad46cec0a0cf84f5120d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9524159f5d8bad46cec0a0cf84f5120d_JaffaCakes118
Size

267KB
MD5

9524159f5d8bad46cec0a0cf84f5120d
SHA1

716976ad0c8a31f53ec8555ad542a79aaaa9071d
SHA256

a5b906327bf28c2e1d2bd2c2f3494e0bfb0f55f842fc8f2835d7eb122e891eb5
SHA512

5474d07bd0cadb898ed1a04880b2ee76db07f9f35f9a87fd2cbc8e64a344bf75d14cc5902ec45e05ea8dc4b4f6b9403a7cbf240bdf9948c11781725c99b1f482
SSDEEP

6144:wYZS4jNUmKaqwAlO3O7Jr8AiXxLhS9PZVqD4uWjOsjb:5sMamKaqwAO3O9r82fVqDVyjb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9524159f5d8bad46cec0a0cf84f5120d_JaffaCakes118

Files

9524159f5d8bad46cec0a0cf84f5120d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

29bd810f448a640871ce275f73c6c03a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
SetLastError
LoadLibraryA

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 222KB - Virtual size: 222KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ