eb5f5fce16fc9a9195067b2eb33858fb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb5f5fce16fc9a9195067b2eb33858fb_JaffaCakes118
Size

11KB
MD5

eb5f5fce16fc9a9195067b2eb33858fb
SHA1

569f98a1404e5ceb7c3607c3a5092177bd93b296
SHA256

9fd7aaec19e3325015989f7b28b5e07f4d5cd49d2701557567cc238a6ec18c87
SHA512

8676f89a54a9d8d3d6cc6e957071000f7065fd393a5bfbaa0281b5f7760542ec5f1606ff16193ea4abffbb6e6c05ef6ca3e213a5e4eddb822bc41f445c0d17bc
SSDEEP

192:aCb86CIBaSRyIr4l8rI2/hbF1CiXykPq4O0EntEP:aCbAI/RPNf5FYiikmLntEP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb5f5fce16fc9a9195067b2eb33858fb_JaffaCakes118

Files

eb5f5fce16fc9a9195067b2eb33858fb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

87bed5a7cba00c7e1f4015f1bdae2183

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress

Sections

.text
Size: 512B - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 416B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE