2ffa3cfde91ce3653d8746c772fe8dc1_JaffaCakes118 | Triage

Sharing

General

Target

2ffa3cfde91ce3653d8746c772fe8dc1_JaffaCakes118
Size

7KB
MD5

2ffa3cfde91ce3653d8746c772fe8dc1
SHA1

b0ffc2d21f6570bd5e3e8450cf9c240ca56138b3
SHA256

f97ec1d1a5244915997c5523ec4628378ddfa896ac406cf760f557a75d99403d
SHA512

b9354c54fa1575d5d6857336d4102f47fb6d9375e44da8b2526163a605e1970bb460d90b9a1da0402871e271678e2cd326fd3950234b5691b24753498f8957ef
SSDEEP

96:Yk6/mgr0dy5ok2Q9tpW7RXu85sfPk6ODyZNBN8yDToFPiZq7WxEKxLP6WqtZOF:YkrgGwpaecKVOi7N8yDcgAOPLP6WqSF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ffa3cfde91ce3653d8746c772fe8dc1_JaffaCakes118

Files

2ffa3cfde91ce3653d8746c772fe8dc1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b87a8b76fe6cde1c30520bad61aebbae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
RtlZeroMemory
Sleep
CreateFileA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ