07b10def1a42b0cd58b885dfa84b0610_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07b10def1a42b0cd58b885dfa84b0610_JaffaCakes118
Size

7KB
MD5

07b10def1a42b0cd58b885dfa84b0610
SHA1

23ab8582e1489d0874e0911e982ecffb71cb60cf
SHA256

b1d6050ae6701712ddfd9709d18f7265c4253c907703ef0229bae473fb356a47
SHA512

e78ebf875fed6b6308ab08cc2efa935ee78f2dcff8a70fed77e87b927b0fb6dccddcec543b167aa7d8058488506e05078e031aa8be862b0bd6f0c8d7d4667749
SSDEEP

96:ePdGoGa8a+3Q2y56HNJYIlPSiuuKc/S+WPAZhvZoqg/Hlf3LwpvhRkSAR:Y4a8akQ2ywYIJ5uuDK+UysV/HpERkSa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07b10def1a42b0cd58b885dfa84b0610_JaffaCakes118

Files

07b10def1a42b0cd58b885dfa84b0610_JaffaCakes118
.exe windows:4 windows x86 arch:x86

937a451b37e804f965eae1bdd83f40df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetProcAddress
VirtualFree
ReadFile
CloseHandle
VirtualAlloc
GetFileSize
CreateFileA
FreeResource
WriteFile
LockResource
LoadResource
SizeofResource
FindResourceA
GetModuleHandleA
GlobalFree
LoadLibraryExA
GlobalAlloc
WinExec
GetTempPathA
GetSystemDirectoryA
ExitProcess
GetStartupInfoA
GetCommandLineA
HeapAlloc
GetProcessHeap

user32

wvsprintfA

Sections

.text
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ