fee6e49d6a6205e10e4a4ef0f881475e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fee6e49d6a6205e10e4a4ef0f881475e_JaffaCakes118
Size

38KB
MD5

fee6e49d6a6205e10e4a4ef0f881475e
SHA1

629413fa308732a8078cc1e459f36f5f735c76fa
SHA256

a54894b321640b1d02b0dda4308d1149aa89c1ef922ab2aca9b14e9d2da43635
SHA512

e906bd530d67c643d46a253aeb138b5db82002e9449b3637c0dc3261eff1852bb497ae414c744c5f6abec9fb669ea92bc0071e52394facd37f5fddaa630372cc
SSDEEP

768:cnsfAzcrdKWx7kG/Un+eysKFaNbeKQkeH:lfUcSpn+emaNyK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fee6e49d6a6205e10e4a4ef0f881475e_JaffaCakes118

Files

fee6e49d6a6205e10e4a4ef0f881475e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

91e5bbdefc162e7070a3fb04aea3e1f8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
CreateFileA
lstrcatA
GetWindowsDirectoryA

msvcrt

abs

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 356B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 402B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ