2de61336fafc595468396d7eceed08f0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2de61336fafc595468396d7eceed08f0_JaffaCakes118
Size

1.4MB
MD5

2de61336fafc595468396d7eceed08f0
SHA1

7855a1d944f8f41d1ef21887f3ef1c9ba40820c8
SHA256

98add56256e76ef99347a82a708d0813b7dc34d91be8b96392d7de66d82afe91
SHA512

c3a2493b9c0c594e6f7a3731e133867dc46da1d4a603a27620919b609272d3adbae2c269e2dfb6e97e9f8a6363f873099afedfd0da4917b94b10f768255770b0
SSDEEP

24576:awgFc+aTrLo7AOeajM9oA9AY9lbFHUpYITwkYtutgTNn+d/J5CavGJVuKU:aTyrLCAfSko1YPi+IiQ6N+Hvek

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2de61336fafc595468396d7eceed08f0_JaffaCakes118

Files

2de61336fafc595468396d7eceed08f0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bcc246ddbcce844b3a841f9bdbeb044f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32 winmm

lstrcpynA �S)

Sections

.text
Size: 856KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 496KB - Virtual size: 496KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ