178c5f01f5fa76196cd1d1e1c1d6cac6_JaffaCakes118 | Triage

Sharing

General

Target

178c5f01f5fa76196cd1d1e1c1d6cac6_JaffaCakes118
Size

18KB
MD5

178c5f01f5fa76196cd1d1e1c1d6cac6
SHA1

d2b49e9c583f12abf40849c1104264eb1614428c
SHA256

e0d89ff7a15e89b9251afac275d5fbe27dfccde5a2e912bc7e77843fae68358f
SHA512

4ad514b5f21c86c2e90a599dec6368b5bf747ce9146ba360bc664112df3e7ea2ba2905a2b2bbdfc19d18c0d6bd671569a3a2c8d1c1f60505821d78dc2233a184
SSDEEP

384:ZtutRVGPrIUtKffeIUI3RYIHlU0x5D6A5tfsPmxU19LmDO:ZtutqPptOfeIHRYIHhXGw0PN9LmO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
178c5f01f5fa76196cd1d1e1c1d6cac6_JaffaCakes118

Files

178c5f01f5fa76196cd1d1e1c1d6cac6_JaffaCakes118
.exe windows:1 windows x86 arch:x86

e884b31e8e607b0f2c8df90f116983fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
GetProcAddress
ExitProcess

Sections

CODE
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE