bbf8aed9e343f183c722d782dd06cf31_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bbf8aed9e343f183c722d782dd06cf31_JaffaCakes118
Size

370KB
MD5

bbf8aed9e343f183c722d782dd06cf31
SHA1

ea356e10c93a7b18f4eb524d7bad87cffb74e571
SHA256

c8abcf5cb443c3c2470b226c881e27109964fccd5cb3b1d1bca74a09017bc21f
SHA512

9e0cd089e4526d4b771aa8f66c6ca0458a0194d6d9e0f25f36db789a6bdc4a7e119c0546ed059d0dabdac87f687fb59d5c948d0910ca194998d3fda50e6b0cb6
SSDEEP

6144:PDk3+8qI+8JMcJyBn/T1ttCz7ymAT1B882Edu0vtuRsrEtWWoso30xa8Gtbqz1R3:PDkO8q586cE717Sy1JB8fEAmt4srEtOO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bbf8aed9e343f183c722d782dd06cf31_JaffaCakes118

Files

bbf8aed9e343f183c722d782dd06cf31_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1cc0dc102b29affe7a368d952fbf2bcf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetProcAddress
LoadLibraryA
RtlZeroMemory
lstrlenA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 178B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 366KB - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ