ae6fb95111d8c1e5967648f0f8cf744b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae6fb95111d8c1e5967648f0f8cf744b_JaffaCakes118
Size

9KB
MD5

ae6fb95111d8c1e5967648f0f8cf744b
SHA1

8754204c7902094e4b4c0185f3c89ba64af70134
SHA256

dce5c46f9e473a771e3a43ab9cdf9e89874b35a2f270faa01e5fdd37da31c2ba
SHA512

86ecf9cb73df46c882e9f434a38bfd9a8ee1c8bb0543453d85c465e4a814d961b88a06c5b32eee74472c2d2c5caf5e42d1aca3d4fce140a114fb411346bc44ec
SSDEEP

192:BlHjnx2sUYwlgPQcCUZGQlU3palZfPoxEj2Y:BlLxFwrZklU3pal9Pox8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae6fb95111d8c1e5967648f0f8cf744b_JaffaCakes118

Files

ae6fb95111d8c1e5967648f0f8cf744b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

36b34f4d8f7d7174e86780aa6b2b4d4a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvbvm60

ord631

Sections

.text
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 840B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mzDGc7p0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ