e06e4110fb2c830e27f18654e11dd553_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e06e4110fb2c830e27f18654e11dd553_JaffaCakes118
Size

8KB
MD5

e06e4110fb2c830e27f18654e11dd553
SHA1

7ad5e5def726014f4cdcc21f1b9558b021641401
SHA256

599c52d4d7b802601e0637048b5c2fd58c08996c9a2ae986a4d215643eed1655
SHA512

8e19d7bee918b6b44ca3ea3244fa41ae8154905366456310efa1c75c1aba3cc1fe597269d501f3d516718d0dcb6859542759632c593860da71c272f1f73d4490
SSDEEP

96:giLvMOU/qz2ZqCgdNdvugWpWnla3dhWFzm0H:FkOUBgCgdHmBWnlaN8X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e06e4110fb2c830e27f18654e11dd553_JaffaCakes118

Files

e06e4110fb2c830e27f18654e11dd553_JaffaCakes118
.exe windows:4 windows x86 arch:x86

266aa2a261986f9b0f6674ecfa873214

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetModuleFileNameA
GetProcAddress
GetTempPathA
ExitProcess
ReadFile
SetFilePointer
WriteFile
lstrcatA
CreateFileA
LoadLibraryA
CloseHandle

comdlg32

FindTextA

gdi32

AngleArc

Sections

.text
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ