a5ff33459cdb629d8b01503716d16d95_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a5ff33459cdb629d8b01503716d16d95_JaffaCakes118
Size

473KB
MD5

a5ff33459cdb629d8b01503716d16d95
SHA1

c5d47da0c1210b96150455cb8c4fefb28b41b8e9
SHA256

7a713b22fab2a0f63c21b691e6ce5fec64330de248910ac64d17e598c08c8834
SHA512

caadb207eafdfa3d5993d0eab223dfdd3f7ec75b4f9dca4fe33797aa0cb6200934d029e366135b5f4ecec426152f6d039715541dc3ce42e4d5e706ea948b4631
SSDEEP

12288:fHePOWOcmW0XQ7ZUTsX2O6HKcQgWzV7Yd35FcYnASQZ0:/kOXcmWGQ9h6HKcQtzVS5FcYCW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5ff33459cdb629d8b01503716d16d95_JaffaCakes118

Files

a5ff33459cdb629d8b01503716d16d95_JaffaCakes118
.exe windows:4 windows x86 arch:x86

647b2d25b4821905b4195ff7a6455b54

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress

Sections

jytrhtrj
Size: 512B - Virtual size: 816KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�trjtrhj
Size: 469KB - Virtual size: 472KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jyrtjhtr
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE