b0eea28d07dd5272ce8dec6c629fe435_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b0eea28d07dd5272ce8dec6c629fe435_JaffaCakes118
Size

1.1MB
MD5

b0eea28d07dd5272ce8dec6c629fe435
SHA1

410c2c0e81ebf4805c748581f163777b1102ed08
SHA256

0de9bfc3732bfb8f8cfed39931ca55b8b790a6804ad53a8b0e9bda56fd0cefc7
SHA512

d7d8b2ce5e626960642f331a35bcb3d55236a26c3f3d25120486e8a8917c03c015819bbfca1125e197d37e61582efffa5c86ab28817b39e175ba5b5418cc111c
SSDEEP

24576:8xYO9KMAtKPIYDPt1lLjFoqFBJC5eVAgNwYszKaBr8xg:8gtIvDPt1lPFoaBJoeVAgiUg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b0eea28d07dd5272ce8dec6c629fe435_JaffaCakes118

Files

b0eea28d07dd5272ce8dec6c629fe435_JaffaCakes118
.exe windows:5 windows x86 arch:x86

07fa39dda56c27c1a095e30d98c524da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32 rasapi32

GlobalAlloc 3�

Sections

.text
Size: 388KB - Virtual size: 860KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 656KB - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ