7396739e8713e3e3e6f8917a9299c962_JaffaCakes118 | Triage

Sharing

General

Target

7396739e8713e3e3e6f8917a9299c962_JaffaCakes118
Size

265KB
MD5

7396739e8713e3e3e6f8917a9299c962
SHA1

ac141e09e479a5df8c78c56e2651f7b76e78c89e
SHA256

bcb2babada75a2347334673af4ab2f6af8cf8f38a0bdf278d0c43fd0dd80e05b
SHA512

1543c0b1ce4e3967b01c1ec00967f0a6d60a37737c310d1290a6963d088be99bea06d5a9004143ab839c22b789898c082623f2cbc69ed8d2d123de2d18dd7802
SSDEEP

6144:Td2d1hhrmXyrwlUdfcODhDg9MFagC47BOUUbJK0MMg:Tcd1hlwEWMFaV44dRg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7396739e8713e3e3e6f8917a9299c962_JaffaCakes118

Files

7396739e8713e3e3e6f8917a9299c962_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ac804df54360827fa1d447ddd492937f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
CreateProcessA
ExitProcess
FindResourceA
GetFileSize
GetModuleHandleA
GetWindowsDirectoryA
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
LoadResource
ReadFile
SetEndOfFile
SetFilePointer
SizeofResource
WriteFile
lstrcatA

Sections

.text
Size: 1024B - Virtual size: 766B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 510B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 564B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 261KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ