d0358064f45ea51d32ee6d574231819e_JaffaCakes118 | Triage

Sharing

General

Target

d0358064f45ea51d32ee6d574231819e_JaffaCakes118
Size

17KB
MD5

d0358064f45ea51d32ee6d574231819e
SHA1

c2b82a454fa1d284d5ea60b0a99b85e62781dbe2
SHA256

f7f4e5e288f0c08d1a23b0d87108d4e400f84fa5836cee206012077803e50621
SHA512

410c0b424c8e4d58d69021c958a9f18583b85e50598fe150c9d7b5e44651976f54635fb3c223d01cd8f0ecd1210eb9b9a37adcbc967a75cf2f70d125018441d6
SSDEEP

384:BHdFR59Hta1/S3y4Y09Jjrb32zruBPcLtc35PWDv7pSYPow7vvxlL:BPLa1q3y4FguBU23W797D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d0358064f45ea51d32ee6d574231819e_JaffaCakes118

Files

d0358064f45ea51d32ee6d574231819e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a78d532715cacee6c4e5deb5a3dc1626

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msys-1.0

exit

Sections

.MPRESS1
Size: 13KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE