959f11098faf11071050fb31983a1fa3_JaffaCakes118 | Triage

Sharing

General

Target

959f11098faf11071050fb31983a1fa3_JaffaCakes118
Size

59KB
MD5

959f11098faf11071050fb31983a1fa3
SHA1

f4ae561025ccae1f9fa6c641312f942d073c3f53
SHA256

c61459694b2246059739d2abec9ddb3ae22d02d807e93658411a13b78a46fe7f
SHA512

6c4b5305126bf5d7bf8adb9233f15a494a0d176b2e43a8b5ba82a8f20006bb00e14f5f28bfb5605d55dad1d322b70c57b8d5f3982c6a58c81b09ca341589fa9c
SSDEEP

768:z4fjl9d9c0np5dDqlVRLEGAYv24E4Muqkhl5RK5ChydmZ90KZkBLN6i6pvfH6d0D:Q3c0p5klVZOonMvcRCCsApZkBI36dh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
959f11098faf11071050fb31983a1fa3_JaffaCakes118

Files

959f11098faf11071050fb31983a1fa3_JaffaCakes118
.exe windows:19951 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

zbyjayay
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

arabriaz
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zzaribyq
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

abijrazy
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ