e2098d8425c74524f32e0ef8e3b8dacd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e2098d8425c74524f32e0ef8e3b8dacd_JaffaCakes118
Size

86KB
MD5

e2098d8425c74524f32e0ef8e3b8dacd
SHA1

41b5c762e2112a0402e749a7a5886ffc1c9df51e
SHA256

608a942d3e52090b0d058a2cb7561883a2014522e3935ba15e4e61c2d9783fbc
SHA512

e85490d0acf4a6d220efef498fb91c69718273fd8a7fe82a7ec905abf9d9b088f15a96c82b9eecec651ceb75693f7f0a2c2ae99a4a924988390ae64f22cc7852
SSDEEP

1536:mAaRiox7MLOWQu06aD0pHH2wxAq2ngin1CJlQwpSiqHHkxxKW+LWF1y3:iRV7MLcD6zH2SAq2gi4lQw4RHExxLel3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e2098d8425c74524f32e0ef8e3b8dacd_JaffaCakes118

Files

e2098d8425c74524f32e0ef8e3b8dacd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a7333743ef063a68d1d860bbdf1c328e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
VirtualAlloc

Sections

_winzip_
Size: 38KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_winzip_
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_winzip_
Size: 11KB - Virtual size: 384KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_winzip_
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE