23e340c6577123c1092dc8d5425ede68_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

23e340c6577123c1092dc8d5425ede68_JaffaCakes118
Size

92KB
MD5

23e340c6577123c1092dc8d5425ede68
SHA1

47c0767dd35d357b418eb5ccbcd5bdab4f26838f
SHA256

5f45de84ba8c1b0fd0b6eff5dec3b09de0c60b299be2c0e6b35da532742756d3
SHA512

be20573c0fa89a95343dd80f0ccf55f890343cbcde9f4c2dca70f1e29d92d2f25b18d17b958497c8ec53091420aca7f2ab740230d321454ada38941d8d1e73da
SSDEEP

1536:Xn+0TNVk9RWXRTQxdK79rEn2IIQ+J165N67EKZmxrxP68A:X/NVOCRqdGrO7IvJ1z4KZ+P6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23e340c6577123c1092dc8d5425ede68_JaffaCakes118

Files

23e340c6577123c1092dc8d5425ede68_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9abadc8144ce313c3c345855dd1d13f4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
VirtualAlloc
GetDriveTypeA
lstrcmpA
VirtualFree
ExitProcess

user32

GetDesktopWindow

Sections

.text
Size: 512B - Virtual size: 276B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dsfwer
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ