d53c188e4471477fd2146c0a86336a3d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d53c188e4471477fd2146c0a86336a3d_JaffaCakes118
Size

57KB
MD5

d53c188e4471477fd2146c0a86336a3d
SHA1

7849d4eead955f03b021449243777423a1037b67
SHA256

b263d27b41ed6568656269c0f33ccd63909ccbed6d4a918539d68a759cb30027
SHA512

881440966f0e5feec1dc1c8a09d64b5a43d33b123ba28ffb9fffbd7ef60b0e44f36699816be00a742d8857f51012564d6fb05a2333ade9bf5ad5f47548d9ec9c
SSDEEP

1536:1k6GS5Hy34gcY0jr1FJph8HRFxkrgcwlQ5p:1kjjc5H1phGyrUw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d53c188e4471477fd2146c0a86336a3d_JaffaCakes118

Files

d53c188e4471477fd2146c0a86336a3d_JaffaCakes118
.exe windows:1 windows x86 arch:x86

01d7c93007cd1affc89d579deb0f08e6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualFree
GetModuleHandleA
GetProcAddress
ExitProcess

gdi32

CheckColorsInGamut
CloseEnhMetaFile
GetObjectA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 40KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 302B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE