2691c099f2cf11279524ff76f852f3d4_JaffaCakes118 | Triage

Sharing

General

Target

2691c099f2cf11279524ff76f852f3d4_JaffaCakes118
Size

111KB
MD5

2691c099f2cf11279524ff76f852f3d4
SHA1

54568df5d7a85fb4563cb7d143e1fa19f164c67e
SHA256

13c3bb11a6e2c3f1cf7e1fb3c10fc0f36249a9e8c99779904979ed9fbd552076
SHA512

a486b5fb7f31336731ded640fc4bc7fbdfb8c88aaacb4cb32b36438607c7b4f96a1c9d5d01ac451c7d2b2e7a1a0029c52915f28698f33732d5a46538a079b7ae
SSDEEP

1536:x1WyDw1vZ9JFT1ciY3VNyEL48C+nGQ/jOFjrd3cKY7uzGgjD509ZYG:bKlF5yy648C+MDc7IGU29m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2691c099f2cf11279524ff76f852f3d4_JaffaCakes118

Files

2691c099f2cf11279524ff76f852f3d4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

28b40b78689be7e83ccca2ff02354d4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualFree
Sleep
ExitProcess

user32

GetMessagePos

winmm

timeSetEvent

comctl32

InitCommonControls

Sections

.text
Size: 512B - Virtual size: 206B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ