21565b5b7803a28a7f17ee318e748554_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21565b5b7803a28a7f17ee318e748554_JaffaCakes118
Size

112KB
MD5

21565b5b7803a28a7f17ee318e748554
SHA1

9dd18b52bacb425b3515fb398b6ffd2941d6a7ed
SHA256

5256f59105adc660593f17e6d865f9578bbea8d651ee74c6dcd958e0923b8aa6
SHA512

cc02acfcbe9fe47c5ec8ed6c6d118c35fe077908e46595612e0b5da5cd9b1e23047f7b820f77d9238755af325eaf579704c475597cdb8bb23e8194fe7e90e779
SSDEEP

1536:AF/+MKgohVcEmXcAwhhL8fIdks4657fC7Z/Mud05pTJ:AkYEfAaB8+4C7fyZX05pT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21565b5b7803a28a7f17ee318e748554_JaffaCakes118

Files

21565b5b7803a28a7f17ee318e748554_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f81d9f879d4d2261b5bb96f3f0fb9a7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualFree
GetOEMCP
Sleep
ExitProcess

winmm

timeSetEvent

comctl32

InitCommonControls

Sections

.text
Size: 512B - Virtual size: 222B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ