a9568b8438fdab3f31bcfd8e885990d1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a9568b8438fdab3f31bcfd8e885990d1_JaffaCakes118
Size

35KB
MD5

a9568b8438fdab3f31bcfd8e885990d1
SHA1

9dd20906bec51e72d5f3d8606071fd2705393c69
SHA256

8731baa93d75060399e5798125383d69d702c2a455a61f6dfab8ce79e2a69c05
SHA512

c9308a480bc473ef1325f4f9ed996020a659148e5fc40ad50317e61b8a18c835c094b5ae77dafadf029950cbf4ae3f7565cab29ab4847195613900ea2dbc84b2
SSDEEP

768:mr4wB75A85hlm1ahg1eTkRuYYbsdz/S/ftAROUXTB:mPB15hlm4+0kRuYYIBwUN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9568b8438fdab3f31bcfd8e885990d1_JaffaCakes118

Files

a9568b8438fdab3f31bcfd8e885990d1_JaffaCakes118
.exe windows:1 windows x86 arch:x86

9ec6a573d2e74bf19d7546b3a6b639cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ExitThread

Sections

Yes%r�(�
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�q�G��d
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

y!��+�
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE