01cd42b799bb2d82d205ef0edfe560f7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01cd42b799bb2d82d205ef0edfe560f7_JaffaCakes118
Size

65KB
MD5

01cd42b799bb2d82d205ef0edfe560f7
SHA1

095b028df2e087804aeb58380e792aad2bc05252
SHA256

0e3d4bf61a516fc745687caa68aefc12160947e885843916a8eb201a6572c61a
SHA512

610dd4eac600408a7881a30fbe57180b9d53de48c2964ec777778c4e53833ae8f09cc4b907eaa5db7f0114798a763201c54e4eb6676d6aefe42bf2ab2aea9a85
SSDEEP

1536:I3Rc2XT6xwTtAWmPrBQMEXmVnUL5F0yXprGkQmvNZ:EXuxwJjm9fjVUgyZrGkP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01cd42b799bb2d82d205ef0edfe560f7_JaffaCakes118

Files

01cd42b799bb2d82d205ef0edfe560f7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE