e0a2e3de2847dbbabf7729dd8bf07c3c_JaffaCakes118 | Triage

Sharing

General

Target

e0a2e3de2847dbbabf7729dd8bf07c3c_JaffaCakes118
Size

20KB
MD5

e0a2e3de2847dbbabf7729dd8bf07c3c
SHA1

6a451070d3d1d95586ade4ca6c946bd1484bf359
SHA256

47b2457fc401acb9f38a0c2db6af2f7031dd53920faeeb947ec6bad12c0d5fc1
SHA512

e0485326f596d25b6f4fa03ab30fd3e6a9fadb3b391120233b3ad9a48c7905b6d827601c9758b18d64911e16e489ef78cdfdf7ad6bcedfef1421d7212a124911
SSDEEP

384:OxmdYiA5jjQbKmE8QgtNptNjMseTeLd3vDUDEvFGbunuNtoJ3p:Cm4jUbKSptNre49YEkCn+tM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0a2e3de2847dbbabf7729dd8bf07c3c_JaffaCakes118

Files

e0a2e3de2847dbbabf7729dd8bf07c3c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5fec8a7a412b76d61583283e2c783857

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

advapi32

RegCloseKey

wsock32

socket

Sections

.MPRESS1
Size: 19KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1024B - Virtual size: 894B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE