14d616c77d72e7ed6f7cee5f351af855_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14d616c77d72e7ed6f7cee5f351af855_JaffaCakes118
Size

4.0MB
MD5

14d616c77d72e7ed6f7cee5f351af855
SHA1

2935144c7ebc4a5ff0e1e4ba7958f5c998cd89ec
SHA256

a577d4dbca6dd73d78c714ad29453d28ac687ce5bd189dbabf1e83ae887fc2f7
SHA512

846a490207602ed9dc57600eca08c18102f756fbfbd5b46411806b40cfe77728112954f82ad54240ce2dc750c317760b4d8fa868902b18b5be16819bbf7a2659
SSDEEP

98304:ZI/JVwqmELsXzNJ4Lj7pWWrFzVo+ZW2KbFl+EPZDYy:ZI/r/sX8jIWxVor2kf+eYy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14d616c77d72e7ed6f7cee5f351af855_JaffaCakes118

Files

14d616c77d72e7ed6f7cee5f351af855_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6f5dc87c82e2202be1769c969372c7fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32 user32

GetModuleFileNameA �A4

Sections

.nsp0
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 474KB - Virtual size: 476KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ