adad43a4370f148298437aae111624e6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

adad43a4370f148298437aae111624e6_JaffaCakes118
Size

351KB
MD5

adad43a4370f148298437aae111624e6
SHA1

3090337c50791ee7d3244de79d225e222139acf7
SHA256

2512f0fa957b0debb019da770b9e019fd355423d888b70955ca3a7bf55b60c55
SHA512

0e28e76481ae5d36ac014ad2976131e33acbb26f545791bec38962cf4ab914fa1d1b8c28e4d7882773c2ae7c5ada43e9b9a7d7d2c4f1d499159d0a7990e70bb9
SSDEEP

6144:Bdv4Rz1ApEo/hGYqtbHQ8pXXZ+axFdOqGxe6r5DRCxDOzInoScx:Bdv4RzmH/kYqtbH/TLWq7W5NCkIbcx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adad43a4370f148298437aae111624e6_JaffaCakes118

Files

adad43a4370f148298437aae111624e6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

91323fbf2b892052c0f5f22da49d9680

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FatalExit
FatalExit
FatalExit
FatalExit

Sections

YADO
Size: - Virtual size: 217KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YADO
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YADO
Size: - Virtual size: 333KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

krypton
Size: - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_!_!_!_
Size: 350KB - Virtual size: 352KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE