2e60c5e2982ae0b32ef5e23e8f332685_JaffaCakes118 | Triage

Sharing

General

Target

2e60c5e2982ae0b32ef5e23e8f332685_JaffaCakes118
Size

513KB
MD5

2e60c5e2982ae0b32ef5e23e8f332685
SHA1

12a5d6ac17f2221d671304f4d6e88b00c40acf8f
SHA256

4a44a21023dc9880fceb1bd694c0590d162344016b530267f0808d86e405ef4a
SHA512

2ddb3559b2dc878e5904e3904a3ceaf2b8ea8567362169e22164601c0691f8b265304c299a30631dbe8defb440bc908bd12e02492952d57dcd944e8c80357977
SSDEEP

6144:7MSbWohE9q2PsXrSVew/X2+wZHeSPVep6s6BCF6GfEWfadRNH0QV:7NW2E9/cZw/X6eSPtfS6G6h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e60c5e2982ae0b32ef5e23e8f332685_JaffaCakes118

Files

2e60c5e2982ae0b32ef5e23e8f332685_JaffaCakes118
.exe windows:4 windows x86 arch:x86

efc21f407fa1d498716e14f6a804a40f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeResource
SizeofResource
LoadResource
FindResourceA
lstrlenA
GetTickCount
Sleep
GetLocalTime
GetSystemDirectoryA
GetProcAddress
LoadLibraryA
GetFileSize
FreeLibrary

user32

MessageBoxA
wsprintfA

msvcrt

exit
??2@YAPAXI@Z

ws2_32

WSACleanup
gethostbyname
gethostname
WSAStartup

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 484KB - Virtual size: 484KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nodnod
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE