feceb03a79f4215fb0060aa343687145_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

feceb03a79f4215fb0060aa343687145_JaffaCakes118
Size

242KB
MD5

feceb03a79f4215fb0060aa343687145
SHA1

aa03fcfd22e395a956dd475e544255f0c9d769a5
SHA256

73266b1ce258156eeca1d2663d25a795cffade1bd8883a9bad45fee9be109793
SHA512

f5ceca4133b3a77c45ca86b23555a5e3f1bb1a1c45808b219063dd9bdca51b7cfc1a1baf2654b5981e6984ba9b03ccf53911ab77d29f53f37e35d2d488ff5891
SSDEEP

6144:vHcDOLkLpjMSF2uUa5vJmBtwvwf09nSGYK/C3G9lisOdvXP5Az1W:vgOLkVtNB8x0nSGYK629eP5A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
feceb03a79f4215fb0060aa343687145_JaffaCakes118

Files

feceb03a79f4215fb0060aa343687145_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress

Sections

.text
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 980KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE