115e83e39c438bfaf98f4ed4cfd907cf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

115e83e39c438bfaf98f4ed4cfd907cf_JaffaCakes118
Size

12KB
MD5

115e83e39c438bfaf98f4ed4cfd907cf
SHA1

b775bc1bd77e365683e02ba96d8b418bac70e352
SHA256

c5b9a7d6581c166c80570767f943556a24f8167acb936453bed78d5c83dd1d4c
SHA512

bc29fc6d15ce5079d18a99f8bb435b4f5c8aa0e49963a47c9f5923c2df68f224eef309b70cc5c882b55160cbad27d2c46f3c9095906cfe8296f9b1b0be1f14d5
SSDEEP

192:dd1HU+3wic+iq1kNyki4SQAYTDOrNtEzjUaIO8tfJVoe7hcJxZcrmh5U3vh:78quNyWSQAYfhga98Nr+xwe5Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
115e83e39c438bfaf98f4ed4cfd907cf_JaffaCakes118

Files

115e83e39c438bfaf98f4ed4cfd907cf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5a498eee87e4d89512a84502f500181f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA

Sections

WIN0
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WIN1
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

WIN2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SUE
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE