96578220002df8721d85f35ab565604a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96578220002df8721d85f35ab565604a_JaffaCakes118
Size

1.2MB
MD5

96578220002df8721d85f35ab565604a
SHA1

fabe565b02fb67367882613d41258b2c9a9aab07
SHA256

f0c173c5b581e0b5f4a1e2e67cb000daa4ccab50b5c85e0177c7ac72e5261855
SHA512

1d9e2c5646a49770f12f42394b1d96f227aa3a6dfb17369c090d3dc0d888ac3287eec0ce153eb31175b83b6e0f34fcf6a7d2a478d167c0b7e642b61b0f9cad65
SSDEEP

24576:yAXcUy3jJhHNIOq5zAkWCb2t9gCWyCu8AQz4eHdH/91OJFtJrT:QhHcW9fyvu8R8mBQtdT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96578220002df8721d85f35ab565604a_JaffaCakes118

Files

96578220002df8721d85f35ab565604a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

35885b45c38e8262882eb2afc102293b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile

Sections

rcnwcrpc
Size: 16KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fjreoseb
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wtfzrfvl
Size: 1.2MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fjpcmmos
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE