ad17b61fec16f781daca15d6c34558ce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad17b61fec16f781daca15d6c34558ce_JaffaCakes118
Size

2.4MB
MD5

ad17b61fec16f781daca15d6c34558ce
SHA1

1d9ef596792271662694af3e3ca9f59a2f915684
SHA256

d4695e67898bec7332f2702d6b8ba7f32955c6e3095da27b0c2134067f9d6a7a
SHA512

40cf056739bbb31e6ebe0e33b99ea1e7a93ef23f16ef84ca219cf8f28a93c30fee3e09700069845aae29c087ea696d2d9fa8cf6788d52e2404a761f361519fb0
SSDEEP

49152:2i/w3XHP36F92db5mTz+OQXHzQsZNypeX89LThu7gJOPXheovGUTru9Dzik:1Y33/6PGb50+OYH0wou74mXhek/O9vik

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad17b61fec16f781daca15d6c34558ce_JaffaCakes118

Files

ad17b61fec16f781daca15d6c34558ce_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c4d54b3cc540522a4913ef7b4955230e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32 msvfw32

GetCurrentThread 3#0

Sections

.text
Size: 1.6MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

С��
Size: 688KB - Virtual size: 688KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

С��
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

С��
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

С��
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ