1057205aacaf8023ef7fb7b39348f524_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1057205aacaf8023ef7fb7b39348f524_JaffaCakes118
Size

34KB
MD5

1057205aacaf8023ef7fb7b39348f524
SHA1

f89610d573ca1f00acc95755b30617436e9de9f5
SHA256

f6f6264ac89bcdb586571cb6487658484326490c14989724d7c021f2a61ffbdb
SHA512

8969658dfd7b01db106ea374df3cc644029972003696d36cf5778bf5617885efae513d0ecebd9a993e101732b7b471a56b495a29ed2a13bf0d3d1d4c6e752ab3
SSDEEP

768:LaS7Lv3XFuvZs5P1H9nnHk427CAQr01C:LZ7RuBuP1Kwy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1057205aacaf8023ef7fb7b39348f524_JaffaCakes118

Files

1057205aacaf8023ef7fb7b39348f524_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5a498eee87e4d89512a84502f500181f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA

Sections

WIN0
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WIN1
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WIN2
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SUE
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE