458a527b9101245e59d33e38f7e39fb3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

458a527b9101245e59d33e38f7e39fb3_JaffaCakes118
Size

1.0MB
MD5

458a527b9101245e59d33e38f7e39fb3
SHA1

9624c2f44141d1353d5e8bad626ba38a3b0559a7
SHA256

87a4ab7e5e962b9143ba090a1f2d1d3a4586f76c32af8656fd78a772d9ab2ba2
SHA512

a6288048a5ce0f7ba50b5518c400d32e2e7011d548374e1bdc093faaaaffa16c49335f806b9a129bf4216e35399464821a41d0aa0a3137fa510362f544259af3
SSDEEP

24576:bRgHsSPZ0gefTzcXHKOwVymhJ+AcC35k+KjYKVO/2BoSg:bR+5Z0gefT43ZwVyXMPapVO/2fg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
458a527b9101245e59d33e38f7e39fb3_JaffaCakes118

Files

458a527b9101245e59d33e38f7e39fb3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

02792e2caf839b3e8a933975b6514eeb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

winmm

waveOutReset
waveOutClose
waveOutOpen
mmioDescend
mmioClose
mmioRead
mmioAscend

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 578B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�reloc
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ