a6a9e4e19f368b0c25e132f7d83bbcfd_JaffaCakes118 | Triage

Sharing

General

Target

a6a9e4e19f368b0c25e132f7d83bbcfd_JaffaCakes118
Size

48KB
MD5

a6a9e4e19f368b0c25e132f7d83bbcfd
SHA1

6b2b93a8561a239121d5632c674f627622a5fbda
SHA256

c0b551ed28cc7de46a9c0b9d290cf602b74bd0b13f596b3d4dac3469ea44c494
SHA512

c6cf2ceb57ac4b3142f3cfe50053106bf61135a053a1298f654332d7e63fcb090fd087a86e33f3d8524c01690c62feea1db08031375d57579caf1395fe3f5994
SSDEEP

768:ql3Ez9C3JGEGHFF+pxKYMOn7ugIAVkQIzrKJOblal+VwwlMLaz4rEb:ql3mA5GE++pxKYMOnIAVkrrKM5alhwpX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6a9e4e19f368b0c25e132f7d83bbcfd_JaffaCakes118

Files

a6a9e4e19f368b0c25e132f7d83bbcfd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

abce258d234e9ef2c5eed5e018ed8805

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdapterIndex

kernel32

GetModuleHandleA
GetProcAddress
GetLastError
LoadLibraryA
VirtualAlloc
VirtualFree
ExitProcess
CreateThread
CloseHandle
GetTickCount

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyExA

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 486B - Virtual size: 486B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE