f0346e11e61f28a5fc5999e1ec255852_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f0346e11e61f28a5fc5999e1ec255852_JaffaCakes118
Size

71KB
MD5

f0346e11e61f28a5fc5999e1ec255852
SHA1

8e0f62f5c13e48968845bae33d8f8f9ecc030b83
SHA256

7468d5753333d9dabfb8873855fd1c738b6d25f1bb6ce9f51d1093a6a6a9a422
SHA512

cf2dd06820f459a484e5018384940dd7186551ddb3f2bb075f1e94fc85657eb3c39e8093279f679f0c0ea970b4b397348eb6d1de4a5141dbb48c464a1a7d3bd7
SSDEEP

768:FDvwgk1A25ZwGGWnrDeiwK1LW2tCaFmkK7rXC7QuDAcZafB57DpEPnukhgu0ni56:1Ig4sWnrDVWwUkgWcurGJp35nqTnM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0346e11e61f28a5fc5999e1ec255852_JaffaCakes118

Files

f0346e11e61f28a5fc5999e1ec255852_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7bcb4be8a284e4ec65e8f7af4ff9f3bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvbvm60

ord696

Sections

.MPRESS1
Size: 41KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE