f59adcb5434a4a577ed0d3a740ce8745_JaffaCakes118 | Triage

Sharing

General

Target

f59adcb5434a4a577ed0d3a740ce8745_JaffaCakes118
Size

58KB
MD5

f59adcb5434a4a577ed0d3a740ce8745
SHA1

6ece6d5c858112a70780b05f70ccfbc79264191b
SHA256

cc81c5d914879b061d301d3052083fbe51148f76a0fea02eecf84b45e698e58d
SHA512

b427b5746067ad30df4bfbcc9e8b5785163937e384519a472ab758576e71332f55b61c80f29288ff5da9287a53b74e080e1e2523a1993a4ed4cb29f8906f1277
SSDEEP

1536:Ik/fzbJt9iMrijRVh7FxeV+OapmHijEHzCNy81yuFhFU8l+:hDb9iMrijRzfO1HfHzMF5g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f59adcb5434a4a577ed0d3a740ce8745_JaffaCakes118

Files

f59adcb5434a4a577ed0d3a740ce8745_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2900fdbad7ac820e2ee02575324dd1ae

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

ws2_32

WSAStartup

user32

GetSystemMetrics

Sections

.MPRESS1
Size: 53KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE