118f059821b8d4975ffdd1c7b408a0d1_JaffaCakes118 | Triage

Sharing

General

Target

118f059821b8d4975ffdd1c7b408a0d1_JaffaCakes118
Size

1.0MB
MD5

118f059821b8d4975ffdd1c7b408a0d1
SHA1

b092241b439a2df7b0be6e6d645bbb1c377bdbf6
SHA256

8323e166ea4ff29525b602184d50dae8f5a066c9138814f998cbbf2ef83b035d
SHA512

6e758c0565fce01da897eff280293cf53533e190ddf4441d64ad31fa5686f8e4d39eebe85e21edf4c23e650174957bce2e101e411947eeba8ce84e1e8e3773ad
SSDEEP

24576:/R/QWtd8hGIxNU/j/1e6RrmlcXaP12yZSrsnSWjlmcf8uOqTH4gVlrI:/RoW/8FG11nXk1XSAfFOqTH4gXI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
118f059821b8d4975ffdd1c7b408a0d1_JaffaCakes118

Files

118f059821b8d4975ffdd1c7b408a0d1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

20e9b842918c90b6230fe45ea0dd4d1f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

winmm

waveOutReset
waveOutOpen
waveOutOpen
mmioDescend
mmioClose
mmioRead
mmioAscend

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 578B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�reloc
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ