e0ccabff7dbeecf009d40033c4c12d36_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e0ccabff7dbeecf009d40033c4c12d36_JaffaCakes118
Size

11KB
MD5

e0ccabff7dbeecf009d40033c4c12d36
SHA1

31de0266d47cc73c9d8964eea0de4d93feb599ca
SHA256

fdf50955e27083bfbdec511df2db0f2a08a352ad7ad748a062c5f7f920d7d8a2
SHA512

d895bdce9582c0d251b5f98ab2c36c3ac6f9dcd2fd1bf0bb5aa04d5ac9bf5d3198be98f9c54da182ffe334a354eb30d91a922d802e00dcde8d94c82a18bc1b8e
SSDEEP

192:CMkG0+6YHuA/lo0CoQpN6Zqf6XXVR4dJdPpT8N5qiFf26WQCUjdTdYp7:CT+FHuA/4CHXVRWcqiFfIe3Yp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0ccabff7dbeecf009d40033c4c12d36_JaffaCakes118

Files

e0ccabff7dbeecf009d40033c4c12d36_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bd9c067af7c04deccac6118290dff660

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

fannfloatd

_fann_run@8

msvcr100d

exit

Sections

.MPRESS1
Size: 9KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1024B - Virtual size: 906B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE