06f67ca5990d97de9c760a963b84af23_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06f67ca5990d97de9c760a963b84af23_JaffaCakes118
Size

28KB
MD5

06f67ca5990d97de9c760a963b84af23
SHA1

3c0d28e299ede3473ed1b02649cb22a57a0b7bcd
SHA256

c01753b68aa092c51933365c96e760dc70ad1fcf2ebd7de33cd4892098fb7a5a
SHA512

8ec3d022d8a43036267ab3caf284209ec9eed74d1e6cce352c6daf6703f2d9831ecc6cdb1af0ede68f63614e2a1aea53f15495a79b3877f850a548dae6a59056
SSDEEP

24:ev1GS0Xa434yTxi+bIPucUn5X925215HcKlp4cvF2BAIA8L0GdpyfPR:q0Xa4398PuhTqc92BAIAI8P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06f67ca5990d97de9c760a963b84af23_JaffaCakes118

Files

06f67ca5990d97de9c760a963b84af23_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7d45c5623c3db51cdf76f2ef55b71cdf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ord224
ord98
ord374
ord145

shell32

ord133

shlwapi

ord773
ord758

ole32

ord61
ord25

Sections

.text
Size: 347B - Virtual size: 347B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 450B - Virtual size: 450B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mackt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE