a471e850464c621881c2010c4740435b_JaffaCakes118 | Triage

Sharing

General

Target

a471e850464c621881c2010c4740435b_JaffaCakes118
Size

3.5MB
MD5

a471e850464c621881c2010c4740435b
SHA1

46bcf53e747e780cb043a56cfdc7470231646ec9
SHA256

e88607d0ee5615c1707a97a5c4a0670a3011ac8f97a1289189c25efe143ff10f
SHA512

2bc583e27aea087d0468295998c34aa1431be78aee0a972b9b6091d714437691489939dc7a478a95fbc482e54f85b3a9292909421b84ad2878772beb859f0cc7
SSDEEP

98304:wHBqdTHuloAj+5yqcFCOad/Yj5KHQpVQL8wAj:wHBqBulrjQyqcpatYj5KHcc8wAj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a471e850464c621881c2010c4740435b_JaffaCakes118

Files

a471e850464c621881c2010c4740435b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

cdd820606a6eeb44f2e257be5fe7f22d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32 kernel32

HeapCreate ��:

Sections

.text
Size: 2.7MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 768KB - Virtual size: 768KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ