a35da9aa17dfa168fd15a5a8e1f2a7dd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a35da9aa17dfa168fd15a5a8e1f2a7dd_JaffaCakes118
Size

568KB
MD5

a35da9aa17dfa168fd15a5a8e1f2a7dd
SHA1

234e4b41349262b9c2af3009f3b05af2df13f572
SHA256

71d0afee28ab78be5d6c3f7cff45d02b4e53d3221fb2597768bc3bb9921330c7
SHA512

73eb95cd8dd7572d77fb2bbf37ee078ef956623be8a634bbb5eda180ca4da5467575cd7f74315ee4dd25342903331536afc6410a60b64f97ba2f4a11dbaa73fb
SSDEEP

12288:zhTrSDHEpEiazp+9TGJhSyADPa3KKlL14U:zh/s5iazw6hSyAra3B4U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a35da9aa17dfa168fd15a5a8e1f2a7dd_JaffaCakes118

Files

a35da9aa17dfa168fd15a5a8e1f2a7dd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a56f115ee5ef2625bd949acaeec66b76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA

Sections

.text
Size: 276KB - Virtual size: 493KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 164KB - Virtual size: 394KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 68KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE