c17b55a18cbf31bfc6993e853fd4e8cf_JaffaCakes118 | Triage

Sharing

General

Target

c17b55a18cbf31bfc6993e853fd4e8cf_JaffaCakes118
Size

59KB
MD5

c17b55a18cbf31bfc6993e853fd4e8cf
SHA1

01f31d478dfca7dd3792554687914e72ecd23c05
SHA256

b46b1565bd82c92f6c20374c8973da92fa0ce9681d914650ef503aa34147910b
SHA512

42348ddbde092161e6c87e1c6595fd48b487c4f0a450ed88ec903885c7978ce85ce4b8dac7e662be98006943c0a027a73dd6b4c741dfe8de31210c6ba50d502b
SSDEEP

768:S/xjMVTTDHWiXgeg7L7Vxdns5u+beciV8CcmObrAguz2ulgopkYJLLFup/MWOqWa:SlMV3D2iwrJxVs5u+beciilyr22uCCR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c17b55a18cbf31bfc6993e853fd4e8cf_JaffaCakes118

Files

c17b55a18cbf31bfc6993e853fd4e8cf_JaffaCakes118
.exe windows:27222 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

iyaqzraj
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

zaiyyrar
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

aajjrqzi
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

iirrqyra
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ