fe771f5e60f065414b21fcd7d2067133_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe771f5e60f065414b21fcd7d2067133_JaffaCakes118
Size

61KB
MD5

fe771f5e60f065414b21fcd7d2067133
SHA1

1a5de1c8a953924a98400b58bb11579a2d911a0e
SHA256

301179abc9c9b0e08c3ac5ad3f69e1783792893aa53b82f78df313b41421449a
SHA512

21253cb59d9d4aaf892df700d9a11fa5df9f1cf20bc11d68bafee1f816de2d49d294e34711a7b37c0828f6da5f39ac0474e1bfc0d39f0f6b528477d10d4df848
SSDEEP

1536:j5CLRXxJfxcJlWYDVZdU1y7qZmlsTdu9UyRkBy:jqndSkYhZdVqQspDU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe771f5e60f065414b21fcd7d2067133_JaffaCakes118

Files

fe771f5e60f065414b21fcd7d2067133_JaffaCakes118
.exe windows:4 windows x86 arch:x86

79b3362178937bf9559741c46bb9e035

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
GetProcAddress

Sections

.MPRESS1
Size: 57KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE