f0c3f3ffc06b9b0845a46758923c5963_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f0c3f3ffc06b9b0845a46758923c5963_JaffaCakes118
Size

59KB
MD5

f0c3f3ffc06b9b0845a46758923c5963
SHA1

684a1fb007c67d1961fe8cd50779df55eba55d6d
SHA256

02482cb293ed9ee1d2af941ca434c4d31a596fd59b6d9d8c09b06c480af1bf19
SHA512

c9bf30567a0fc86b845357334d3b0dc46235f3c0af2af28eba2bc092d9ab6368a596b0441c2afae4b956918b7920fc9f7a54a15bfaea9d56dc7e5130d802ae51
SSDEEP

768:xrNoaNpoYbYDfv3pKYn4lutMUzIy7jkJpMkUQFegotlEeSJWRXzCHe:xrB09zpgCM2I8QJ7RFgtlyJWRjX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0c3f3ffc06b9b0845a46758923c5963_JaffaCakes118

Files

f0c3f3ffc06b9b0845a46758923c5963_JaffaCakes118
.exe windows:63967 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

biiyaayr
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

zyqrazrj
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rarqjjay
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ziyaiyja
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ