0f18495c22b2e41fd8f97fc505f2f730_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f18495c22b2e41fd8f97fc505f2f730_JaffaCakes118
Size

41KB
MD5

0f18495c22b2e41fd8f97fc505f2f730
SHA1

5b8f33699c8c19648cb9305311fb5f509a28138e
SHA256

8685f6a38ce635ed018096e9c068b5fa9b7f05681334391e9b376e02cf13b756
SHA512

9b7a460c9afc2a0b2fb5cf200bf6c5264e9949a89569587f414c86d9cecf307befe3a86b7a0738b4183fc97cead636b950cf50a637edbc9cfdc452d6d2095ce4
SSDEEP

768:c40JfziCvLOKy/2Z3JomCRpU+cl1L2HB3kD2Bo2:x0JfHvqN2Z1CRpdcl1Ycw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f18495c22b2e41fd8f97fc505f2f730_JaffaCakes118

Files

0f18495c22b2e41fd8f97fc505f2f730_JaffaCakes118
.exe windows:34701 windows x86 arch:x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

bijirbay
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

qajyyjar
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yjqqaybz
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

aairqqjz
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ