aec4b20318dec934ce7ae0bca6aa05c5_JaffaCakes118 | Triage

Sharing

General

Target

aec4b20318dec934ce7ae0bca6aa05c5_JaffaCakes118
Size

59KB
MD5

aec4b20318dec934ce7ae0bca6aa05c5
SHA1

6457a7709bc7f78dc7a6f3b791a83ac359b15c71
SHA256

5fa40adb056a47514b860bd4dd0cd14ed10c60d9ef4777759d52717d3b8d1b5b
SHA512

65a673b959f761d66f759a2920cfb99993c4247ed404fd3faebd1a12ec5caf8b08899bf246331ffb8cbb4ed03ab3981ba3ea1cd4fd2d24eef47b59567cc18a84
SSDEEP

768:5a1wgVievDMj9HPDpI7ki3RScCmSel3kdcpI94dla8sH24c+IyHIef/LLRRoAKzW:kbirlurRjFUapISaWDyHDRRoAqFtIH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aec4b20318dec934ce7ae0bca6aa05c5_JaffaCakes118

Files

aec4b20318dec934ce7ae0bca6aa05c5_JaffaCakes118
.exe windows:31286 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

zrajzaiy
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

yraraajj
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rqziiirr
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qyrabrra
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ