2ea0d854502775dfb17c80efa8232f84_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ea0d854502775dfb17c80efa8232f84_JaffaCakes118
Size

8KB
MD5

2ea0d854502775dfb17c80efa8232f84
SHA1

b795948cdd8b94534dca35225ea832266c885216
SHA256

c1aa34704682c1b0a60d930cedbd6fc500a338a23785b8d2e2628b193ee8fb8c
SHA512

690348eb7c60b67a01ca27e3b41267fa4455447c3453384fcceda541dadc9b075892db7b44e1df0ca05fad2ac937cb18dd6288b3d7fda3be8deb9b184594e216
SSDEEP

24:OEhu70fm0BaudWkH5rt2VZv5bF9sNJhsf1h/gHO0Y7Xp1AXB7XmX6WRxq:OEPftPdjZh2Vv+Q15gHKgB8ZM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ea0d854502775dfb17c80efa8232f84_JaffaCakes118

Files

2ea0d854502775dfb17c80efa8232f84_JaffaCakes118
.exe windows:1 windows x86 arch:x86

1b5a445b4d8bf5f603b140f76c97e2cb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ExitProcess
LocalAlloc
Sleep
GetModuleHandleA

gdi32

CreateSolidBrush
StretchDIBits

user32

GetDC
ShowWindow
RegisterClassA
DefWindowProcA
CreateWindowExA

Sections

CODE
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ