07ebcff7b683a269bc5be2ba0d217f08_JaffaCakes118 | Triage

Sharing

General

Target

07ebcff7b683a269bc5be2ba0d217f08_JaffaCakes118
Size

116KB
MD5

07ebcff7b683a269bc5be2ba0d217f08
SHA1

e1a1c1b7ad1a660ef7ab633452f13929200536e0
SHA256

18b1a70dc4b140ac6955bbebcddd0e3ee2cbb681591f722cf75fbd56a120f687
SHA512

1f91b92ce65fb6ca9d1ce678cda940c2573d5474b400421a28edf506c6221e79b23d579a9279dd1fad4af14a55e835046e139d3647fd9742edfd9d6ae2d84ad8
SSDEEP

3072:NToocAJ5w9f9OQ1z81dQfeJAUmoAUvHEADnMBTbTQY:NToG5wt1CW2JAUnNTDMlQY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07ebcff7b683a269bc5be2ba0d217f08_JaffaCakes118

Files

07ebcff7b683a269bc5be2ba0d217f08_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1d8f2cdf2ffc2a270658731d42437301

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetModuleHandleA
VirtualFree
Sleep
ExitProcess

Sections

.text
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 173B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ergerg
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ergerg
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ergerg
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ