fe92371adc7ac3e1513f915a0c6f207e_JaffaCakes118 | Triage

Sharing

General

Target

fe92371adc7ac3e1513f915a0c6f207e_JaffaCakes118
Size

124KB
MD5

fe92371adc7ac3e1513f915a0c6f207e
SHA1

b8a567c57cb73bb40fbb191156001fef187e8dd4
SHA256

a639ff592873434fcdb326c58739b17b4a5d954424867eb9239f31e6e03d91b4
SHA512

b114cfc838af8ec643b0ba64d54048318556de399f9540a67f85d7f9548f287a6b4a851d6353b59ab9d43afcd04f9f7c3c2d729a1863b91ba86d56ce973497de
SSDEEP

3072:X+2oy90pLmVFUcT9d0rmsZlcJ1lpknvK0uFBg2J:doy6ponTjKslp4fm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe92371adc7ac3e1513f915a0c6f207e_JaffaCakes118

Files

fe92371adc7ac3e1513f915a0c6f207e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5a498eee87e4d89512a84502f500181f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA

Sections

Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 32KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE