69d60fbce76a58dfcdf5aa4cb2c7d4de_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

69d60fbce76a58dfcdf5aa4cb2c7d4de_JaffaCakes118
Size

112KB
MD5

69d60fbce76a58dfcdf5aa4cb2c7d4de
SHA1

0d1cf6f3fef4270715d7f19daea3e0f66643b206
SHA256

27c29ee2e973aeb7ce78efbf1c1137d92c80fa35d44d121abdf416e2f67e4d27
SHA512

976ace7276f8e76c111179612fd84341b4daa7d318c1047ceb2a8be97fe30511de84bc5b61ff22fda0b912179f6d988bb68305a57679ef74a95697b66b8cbc6e
SSDEEP

3072:FsDC/UEOpFXxan1XW2y1/CJH/5sfPyu4T3:FsDC/U9pFXxIm2v7sfPLm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69d60fbce76a58dfcdf5aa4cb2c7d4de_JaffaCakes118

Files

69d60fbce76a58dfcdf5aa4cb2c7d4de_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5374be976bec5351e1405026b6d72ec6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualFree
lstrcmpiW
Sleep
ExitProcess

winmm

timeSetEvent

comctl32

InitCommonControls

Sections

.text
Size: 512B - Virtual size: 254B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE