bff5d64d92296e87ce36cd2ec7f629fa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bff5d64d92296e87ce36cd2ec7f629fa_JaffaCakes118
Size

38KB
MD5

bff5d64d92296e87ce36cd2ec7f629fa
SHA1

06b73d0a659d1f21673b13233ea9db41001b58df
SHA256

34442df139151f985db07193e33822bd0010086882b72db6b2c2bc833b556f25
SHA512

eedce554ea3547b0b16023b3d906e05d1da3352e40bc0006421adbb7fc4c925d8e50f3fe59987587ce90c5088ae6985242f0c1bb049b8d73a84d26159c142226
SSDEEP

768:7IdkQwf9C8utN4zhulV4oE11Q3nx7XPNAzcRKo/V2splUW7D:7I6c8uLHhh7XezEQs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bff5d64d92296e87ce36cd2ec7f629fa_JaffaCakes118

Files

bff5d64d92296e87ce36cd2ec7f629fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

79b3362178937bf9559741c46bb9e035

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
GetProcAddress

Sections

.MPRESS1
Size: 32KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE