051ea42bcbbfe780b772fe1685977de5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

051ea42bcbbfe780b772fe1685977de5_JaffaCakes118
Size

1.6MB
MD5

051ea42bcbbfe780b772fe1685977de5
SHA1

b0f437ec2ec506055f5002b5978d24ae56cc3949
SHA256

8465076d0dd08bba17d30b33afcd0e91e4d07135e1ae16bd927509f2c0b9ced5
SHA512

05fce9b6a2cd4f1238a91da9bee7108cbe7b14f5100932291ca8f28e6bfe8631dc40352f621edafcb314fe120b8e2469e8e87bfe838b95eef886aed40e89d889
SSDEEP

49152:TVt9Ow85hlmsL6gD6LGYNlqsbWTMccuZXb:39O93ms2+KhltbZk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
051ea42bcbbfe780b772fe1685977de5_JaffaCakes118

Files

051ea42bcbbfe780b772fe1685977de5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4cfdde5f1ddedeb2e61e2dab44606d42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32 kernel32

FindResourceA s)

Sections

.text
Size: 756KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 784KB - Virtual size: 784KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ