JaffaCakes118_9afdcd2bdeea9ef23a1ee9618e88d118 | Triage

Sharing

General

Target

JaffaCakes118_9afdcd2bdeea9ef23a1ee9618e88d118
Size

70KB
MD5

9afdcd2bdeea9ef23a1ee9618e88d118
SHA1

10348be8a5b04076e10dfab91307d9d66b4b3d72
SHA256

e0bc725d9c66fa218e436028102e327158f11122a8fd63f84389ee644d8ef9db
SHA512

bf668f24ec0f2212bddb4d6d568817324c8bd99ea9fc5cc16c3ddceb71b20f3046ee4c9a062d724cd74fd9182f3d9502fc86a5a734c93dc654f4c6f3f242d336
SSDEEP

1536:UG2rkdlZJkW7ntML91hdMzowYCTFIgTZrVNbtzrnKl:NZd7tMbMcwYUFIMZZNFbC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_9afdcd2bdeea9ef23a1ee9618e88d118

Files

JaffaCakes118_9afdcd2bdeea9ef23a1ee9618e88d118
.exe windows:4 windows x86 arch:x86

2c43ece14d78eee2f3189898bc6ffc36

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetProcAddress
LoadLibraryExA
SetCurrentDirectoryA
lstrcpyA
GetCommandLineA
ExitProcess

Sections

.text
Size: 512B - Virtual size: 291B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 293B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE