2f7794a1d99a7ef203dc9d8862cc3a97_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f7794a1d99a7ef203dc9d8862cc3a97_JaffaCakes118
Size

10KB
MD5

2f7794a1d99a7ef203dc9d8862cc3a97
SHA1

92e1dd2aa3079a1e59b09956977888c932fe05bf
SHA256

cb7ec6959106749bebb8053a1bb06a91483e8531482c383c6253ddd2ccbd3b82
SHA512

227255c165c9c9f4d9b8452cb69d4fedfb5462950277f79886ddac559533adae59ef3d8648c63c9a5f667db4641f82f167289b21bb5cebbde943fcab95364418
SSDEEP

192:Sv8FKOzm4rdAp2kkAydTfvOzKi5Dxf8lBbI+Sz/7hIelSNw:Sv83iwep2kkRTuR5Dk8+Snh/SNw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f7794a1d99a7ef203dc9d8862cc3a97_JaffaCakes118

Files

2f7794a1d99a7ef203dc9d8862cc3a97_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd51a645a9c68bd03b2e51586e5cbdcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rawdat
Size: 114KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE