b529152b01f072b4344cd0205ae5da8d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b529152b01f072b4344cd0205ae5da8d_JaffaCakes118
Size

37KB
MD5

b529152b01f072b4344cd0205ae5da8d
SHA1

6e7451a3294f5c86130f424e9a3ffa2789f58ecd
SHA256

1d566e115c750e0395729e6bf16b58d53daa52b1a3bfc34765c173d385bc7671
SHA512

3e0c2e9276906f9a8f0acace9269b410af6eb00779077b7b01b4521da5b5494245cd9a284d9f8bb56d97a3335fa4b75e8191aff6a10aa87b707d8e227a2e71f6
SSDEEP

768:X6HT4QO+8nkS0JAVnVibDMPLDLxdGmHkT/bGyfaRVzz4Z/5:X61OVnVjjsX+VwZ/5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b529152b01f072b4344cd0205ae5da8d_JaffaCakes118

Files

b529152b01f072b4344cd0205ae5da8d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

110a95360bd729d7cf824ea23c9cbb91

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
GetCurrentProcess
TerminateProcess
CloseHandle
GetSystemDirectoryA
FreeResource
WriteFile
SizeofResource
CreateFileA
LockResource
LoadResource
FindResourceA

user32

wsprintfA

Sections

.data
Size: 1024B - Virtual size: 748B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ