d3a56feaa2ec47080578948d983f50f6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d3a56feaa2ec47080578948d983f50f6_JaffaCakes118
Size

272KB
MD5

d3a56feaa2ec47080578948d983f50f6
SHA1

7aa511575095b1a9fd4479ec7c7d13e20a7fb780
SHA256

e213715af0a4c7e819364f7d52a5e67dcce8a3ba3370bf8b52adbbe1a366a82c
SHA512

2290c6c8122bb004422621c14bab25b08f7a1dba8ad599ba71447d7afcd3fa4973caea502ddad7877370011ab849fcd0844af7943ce021a1c991867a00c7ceff
SSDEEP

6144:OfKTSWqjWrDHwO2EnKMVi+3ddavWmS52gWsN74Sy:c2u6rMO2EA8mWmS5TWych

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3a56feaa2ec47080578948d983f50f6_JaffaCakes118

Files

d3a56feaa2ec47080578948d983f50f6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f21e05129dc91033c5f7f93bbcfb525c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetModuleHandleA
GetStartupInfoA

Sections

.text
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 194KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

22p.2q39
Size: 71KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nojoatx6
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ