becb2aa812f3c26e945fcfc815dbe5d3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

becb2aa812f3c26e945fcfc815dbe5d3_JaffaCakes118
Size

59KB
MD5

becb2aa812f3c26e945fcfc815dbe5d3
SHA1

bae8042dccfb89adb9c5f851ceb1c81f38aaea6c
SHA256

5de43b6a821199989066bfdeb981190d12e56709e17c380f71a9858c53ee54d6
SHA512

d5cb30dd4ade63d84adc86309e1fb0b5bba06fe22f50c77d8372fb580b211795a3e4c8f3d00d1514bb32739130f6c81f55a5d7f628b13102bb3eecbc42e50d4d
SSDEEP

768:vpp32mRqsykruLw7IzcF7krhkMU9eoxFjT1Iev7NzRDITaIJNPdbV8:H2GqFguLw7coAhUkoLnuMRJITaENVm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
becb2aa812f3c26e945fcfc815dbe5d3_JaffaCakes118

Files

becb2aa812f3c26e945fcfc815dbe5d3_JaffaCakes118
.exe windows:8081 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

yraaiyrr
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

qiqaryqq
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jbyjzbyj
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ayayarab
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ