13cd37a4bc8346e3edaa16507050e7a0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13cd37a4bc8346e3edaa16507050e7a0_JaffaCakes118
Size

127KB
MD5

13cd37a4bc8346e3edaa16507050e7a0
SHA1

6585a2e41699896f858ff574245ea4baee73b693
SHA256

1db11219f2dc2e1dc764d17b4411c2ee779707d7bd8c94a41c39adc97d1e5a2c
SHA512

4cea7f8aa8084d61b15dce7bd12cd340c44d841a91982ee16ecde5bf40dd21edbbf2ff96701898b49dc74e637fd2a228afd261b5b1d97f763b908b787f49a2ab
SSDEEP

3072:RfKcFm9DlybDCBAYfYxCBahobjJwZhoHT8um/:5nFPbLsbBahUwZh2TZY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13cd37a4bc8346e3edaa16507050e7a0_JaffaCakes118

Files

13cd37a4bc8346e3edaa16507050e7a0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

91323fbf2b892052c0f5f22da49d9680

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FatalExit
FatalExit
FatalExit
FatalExit

Sections

YADO
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YADO
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YADO
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

krypton
Size: - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_!_!_!_
Size: 119KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE