41b84f7c7d2e3b464246e4558d8d072c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41b84f7c7d2e3b464246e4558d8d072c_JaffaCakes118
Size

11KB
MD5

41b84f7c7d2e3b464246e4558d8d072c
SHA1

a0bd6c8e3fec7803ba6c88807932be720f2fb6f7
SHA256

09a0a31cf17e8b547be4e6cd8eef8eaef1979b8b6b91fe6d35efa9a71ee6ff41
SHA512

4c7523394e1ffa1fd9dc88e33459604bbc239f32135d371652a2ce0209e5f6bc2216e1b75543ca7f141d17de707d0798f75b44f96efdf44855d32832f9c1e888
SSDEEP

192:BY/Nxu1GEfNuluNtnzd5r+TuXp0AgXk7NG5RA0XL:cNDgNuluNtn/3Z0AgVA0XL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41b84f7c7d2e3b464246e4558d8d072c_JaffaCakes118

Files

41b84f7c7d2e3b464246e4558d8d072c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

93fb31442769660c59e42c3f6260744d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetLastError
CloseHandle
WriteFile
CreateFileA
GetTempPathA
GetTickCount
HeapFree
GetProcAddress
HeapAlloc
GetProcessHeap

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ