bccf6ab2b778fd036d62e7d3f4cd12f0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bccf6ab2b778fd036d62e7d3f4cd12f0_JaffaCakes118
Size

11KB
MD5

bccf6ab2b778fd036d62e7d3f4cd12f0
SHA1

db0b16de3e7fa0b8b07a36e1ad37570b9722e154
SHA256

5cdf3934f3ff9a07945a1fd535a20abd4f58ad3237f05f7f45306cae830e0024
SHA512

9efe64233e70263defb04a1705138d85dd05c43a73f448851813b36a3725465069426eaae88f4f203d4522c1285c78547582d023b55b2c4a61d580643c5458d4
SSDEEP

192:5ud9aVOSt2C+ao+8vt7z6sUkXUyO575FvBvJgxMLdr0qo8t:Udmtu+8rUWO57vvxlL/o8t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bccf6ab2b778fd036d62e7d3f4cd12f0_JaffaCakes118

Files

bccf6ab2b778fd036d62e7d3f4cd12f0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dc4655b80caabb6021613342b08b3a14

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvbvm60

ord598

Sections

.MPRESS1
Size: 5KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE