2eac10ee51e9252c04c573c27afda72b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2eac10ee51e9252c04c573c27afda72b_JaffaCakes118
Size

36KB
MD5

2eac10ee51e9252c04c573c27afda72b
SHA1

72c5a96884b36e4a1eb40b487dabc1492afbbb30
SHA256

fadceef381133e6889f15796c119f3ef8a30d20c24fb8381e1537bd9ab35d028
SHA512

a6e09bca5a6b38c46648ca8b39fd9697644fefdefc334f9c94acb98b01aa82f9587f3a18c8e45052c794919b8fcde18439c9535c75501b76aced3255647573cd
SSDEEP

768:GQfXGkHL8Xp2eGdgogzjw7nyX8DlTGgvt7gW3nD5iLAOuXG8:G7aqtGvCj2yX8xTGg2W3MLm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2eac10ee51e9252c04c573c27afda72b_JaffaCakes118

Files

2eac10ee51e9252c04c573c27afda72b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8111320f794d9e62a7ffe5d84bed59a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualFree
VirtualAlloc

Sections

hmimys
Size: - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hmimys
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hmimys
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE