fcad3fa905468c3bf807617627efb522_JaffaCakes118 | Triage

Sharing

General

Target

fcad3fa905468c3bf807617627efb522_JaffaCakes118
Size

164KB
MD5

fcad3fa905468c3bf807617627efb522
SHA1

dafdd4647850a44e9bc8ed9694e77273e8eb3f88
SHA256

276306cdb6b2386a2497c6676a0020efc9ead1b2ad6eef27c66dadf3e1a52d5f
SHA512

b1ad8fe407d71d29d0ece537c3fa9931aa1ad4c9dcfc4fc27e55de5d35008d47b5388a6b1bc3b48169d583f405df1413031b48233040a40f22db6c7ae369ec35
SSDEEP

192:6pOyFYJaluNtnzwbYdmzy72ClnWyNHwbYdmzy72ClnWyNL6p:SluNtnzwbGXKwnWowbGXKwnWXp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fcad3fa905468c3bf807617627efb522_JaffaCakes118

Files

fcad3fa905468c3bf807617627efb522_JaffaCakes118
.exe windows:4 windows x86 arch:x86

93fb31442769660c59e42c3f6260744d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetLastError
CloseHandle
WriteFile
CreateFileA
GetTempPathA
GetTickCount
HeapFree
GetProcAddress
HeapAlloc
GetProcessHeap

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 452B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 792B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ