f3d37a6079256f90343f9380272bef11_JaffaCakes118 | Triage

Sharing

General

Target

f3d37a6079256f90343f9380272bef11_JaffaCakes118
Size

2.6MB
MD5

f3d37a6079256f90343f9380272bef11
SHA1

bd9b19ba8cdb9f0ded6460729f35f2d25f691c9f
SHA256

6b2cf08f0424fe12015aff5e72ec265e4108cdc2e4182f9976f9d20815e762a6
SHA512

61050b6ac43971ae93bbad8db797981b3232d4e4ce188d8039b6a8be132c3fa5072de8fd9bdadcb083ab63fae4b2ab917d7563774f3b8c400a1e90410dd0de36
SSDEEP

49152:RtxmVlKNeH+GBWkKsRsCU+26QrO2e/7YzNCFzdhBcudrz66aPXI3rH1K:RjkwG+GksHCaN/7IkzCudrzGgbo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3d37a6079256f90343f9380272bef11_JaffaCakes118

Files

f3d37a6079256f90343f9380272bef11_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a065115d4a3a979e1137ce810a92eefc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LocalFree

Sections

ufexlzrf
Size: 318KB - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rrrthgmd
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vvhpinxv
Size: 2.3MB - Virtual size: 4.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

umlpeehf
Size: 4KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE