1185b999f6562cece3adbe7816314b84_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1185b999f6562cece3adbe7816314b84_JaffaCakes118
Size

98KB
MD5

1185b999f6562cece3adbe7816314b84
SHA1

46b4651b6e0422b141a79ddff3d9dcf97095a16f
SHA256

e6c93ce0ad16b3ca6687b61f5601668450bedfe95eca22a105abaf81fa10d380
SHA512

294ef2891518be94b6146459c4aa6ca6895043f1c1212c35232f88a4c6d61c0430022507deddd13314f21ee48f70c4fad6b0af650cff29d6afebb7eb19ba733b
SSDEEP

1536:D7m7STUqV7ERruPGLaC68PBZm/mZ+TwlnQrCj5f9GtP4HbpBg4WVcJ:/JB+6R50lnhFLH/hoc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1185b999f6562cece3adbe7816314b84_JaffaCakes118

Files

1185b999f6562cece3adbe7816314b84_JaffaCakes118
.exe windows:6 windows x86 arch:x86

d7d608decdf378f663a7b018c9856d10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
ExitProcess
OpenThread
CreateSemaphoreA
GetThreadPriority
LoadLibraryExA

Sections

.text
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ldata
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ