ae740dabd8ac76745bbbd7d662db2921_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae740dabd8ac76745bbbd7d662db2921_JaffaCakes118
Size

345KB
MD5

ae740dabd8ac76745bbbd7d662db2921
SHA1

20d0e18defe0f19280e15224827d97b38ca9aa3f
SHA256

174ad55a847cf807d4e240486ee30dbbd12bcb01a237f5f7f13fe956f5f8f00f
SHA512

96f9a81571c1fe550ca7515afcf50a4b8abc20e1385cf9471124bb091f4e668470201db8d15cae984551e14c4439933948cd8669caa33f18c9db157e4620ab99
SSDEEP

6144:7FVyOLRy8gfjlRzZ9RJJ9KwzK1eid0lydcCp0d8XFcz3mfbPAAyBQpsTKDX:5bRyTlVRJJ9KnI5f8XFi3mfbPAxe4SX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae740dabd8ac76745bbbd7d662db2921_JaffaCakes118

Files

ae740dabd8ac76745bbbd7d662db2921_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a53f732e1bbd70e2b3217e8d53ce6afb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
ExitProcess
GetModuleHandleA

Sections

pec1
Size: 341KB - Virtual size: 408KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE