dc05a7149384b3ff429e634b0d76e6eb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc05a7149384b3ff429e634b0d76e6eb_JaffaCakes118
Size

328KB
MD5

dc05a7149384b3ff429e634b0d76e6eb
SHA1

046d1edff41b90c64a2858eaa035b3dfb50f209a
SHA256

8885b9fb03d08b88d8bb28086a2cc40cb11b64b027d7cb7ba4e513d01fc4ca4f
SHA512

b4bddae47c4653bdfa5e7633d8726ddf8d9652be649c1294492a9c6cf794dd8ee30b670d819b415bb155763d4d4ad223fb611e90a38494bdaf80e482bf242f94
SSDEEP

6144:w0/Q5j0f1eTzDX7X17OOyzL6aAxrPUiAHGCQT4Ov/oVO3nZ94TkrZ8P:wq594zDrZTCL6aajAx7VO3ZeT+m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc05a7149384b3ff429e634b0d76e6eb_JaffaCakes118

Files

dc05a7149384b3ff429e634b0d76e6eb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

�4F
Size: 280KB - Virtual size: 776KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�R*_m
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

z�
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

K�^�T
Size: 46KB - Virtual size: 48KB

IMAGE_SCN_MEM_READ