f0989d57a533ae1cd0d0ca90b6a7c9f5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f0989d57a533ae1cd0d0ca90b6a7c9f5_JaffaCakes118
Size

59KB
MD5

f0989d57a533ae1cd0d0ca90b6a7c9f5
SHA1

56c8489831d18a62a5c2f56071df0943f76d3855
SHA256

c544dc6ac2a19d868585bcea7f7f66afcda52c00a6d579167ba8a69b4fbac016
SHA512

3c1d0ef15998e4970b2df1d1efb15d18a217ac90cf4a10d671b45afa68532374160d6676c79684343d4b5b134bfeed4660894608e020ce393608b2ae1bfd7447
SSDEEP

768:Q6kAR0+ty5QnzX29z8JW//KH7MsT7YOhz01uFXRhGK3hKmikYxR:T90xkG94c47MQ4QX7GGKlR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0989d57a533ae1cd0d0ca90b6a7c9f5_JaffaCakes118

Files

f0989d57a533ae1cd0d0ca90b6a7c9f5_JaffaCakes118
.exe windows:21171 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

qqjyzbzb
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

yqqjbyjz
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

byjayaya
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rabriazz
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ