5fe074d7597ea50425934383534d6e27_JaffaCakes118 | Triage

Sharing

General

Target

5fe074d7597ea50425934383534d6e27_JaffaCakes118
Size

27KB
MD5

5fe074d7597ea50425934383534d6e27
SHA1

da19a14026b0c0d7cedf7f100719c90b66464d31
SHA256

a0dc5bc6b5520be926f14f2253eec5fd272c6ba3ba80393ae308155d58f8739f
SHA512

3c54ca878a92d08d024717ba0736657c207930b39f15aed86709c79b5f18564162b20bc31b135a20b9e844d3e4ae904d14d0c2286e37f0aeb63b1da21688f9c2
SSDEEP

384:s81QTw3/HnnsUqKmWvXRTY/X4K0nnB6nzramluce/nwpV+gDEz+Grnw+xyuiI2k1:s8f86+/4+kuVhD2+6yMmc7dN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5fe074d7597ea50425934383534d6e27_JaffaCakes118

Files

5fe074d7597ea50425934383534d6e27_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8a1e8ec539522302eea8772c09ec8c47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelDeviceWakeupRequest
CancelIo
ExitProcess
GetLastError
GetProfileIntA
GetStartupInfoA
ResetEvent
VirtualAlloc
VirtualProtect

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ