dd12246225b66dde2943158eea88a562_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd12246225b66dde2943158eea88a562_JaffaCakes118
Size

1.9MB
MD5

dd12246225b66dde2943158eea88a562
SHA1

968a0bfc66ec1ab0a7bc17b7b541c754dc624ef3
SHA256

17a4318f3cdb9ad47210789258860ea100e5f11dc356861e823111db44aa1851
SHA512

f8154905de9cb4db64f4fe3f71c22cc4a4e5eaf9df6e698d97126f8b4a7dd0827ae0901c843e3d16e3c7e861a1a6b83da89b0326db8e8323de1b8ae0f4a4e4ea
SSDEEP

24576:uAE0PzfFQyK+5ZPQXlD7jWynAAVdG77wQBbpTL9Z0gx5a0GdB6ZFzgVpBCnC9Lh2:uAlPzpPQhOynLQ75bpTZSgGjLnw4WxH5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd12246225b66dde2943158eea88a562_JaffaCakes118

Files

dd12246225b66dde2943158eea88a562_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e53c35f20c7165e61c3f1f95d6f9fcb6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32 rasapi32

GetDC O�&

Sections

.text
Size: 516KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ