a1cab5b1d77ff337fa0d206a0b46d5b8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a1cab5b1d77ff337fa0d206a0b46d5b8_JaffaCakes118
Size

41KB
MD5

a1cab5b1d77ff337fa0d206a0b46d5b8
SHA1

3414827c710d9dda10158ee6ab7349965785bf79
SHA256

18397fb8475b36eb2a1d9aae671d0456542a4252f420612ed2d0df13152ad70a
SHA512

283676fcf584b002a06a8d55b1d290766aa07fb91d785eded2a3571308439b6ae1a7f92264e4b1f175ed6abc4413b113c559db3214050388395d5b15553c4f70
SSDEEP

768:nAB3HGxh3s+kl5GWe8+28CyFrel5km8YxrP0Bf1VkPFC5TRi0:13JqgWcMy1+5km80rP051KPFWTr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a1cab5b1d77ff337fa0d206a0b46d5b8_JaffaCakes118

Files

a1cab5b1d77ff337fa0d206a0b46d5b8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b9f2cc673e99f556444ad901886c064a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
LoadLibraryA
Sleep

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 126B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ