70f0856da77cc22bed2dd2c164ee3ea2_JaffaCakes118 | Triage

Sharing

General

Target

70f0856da77cc22bed2dd2c164ee3ea2_JaffaCakes118
Size

95KB
MD5

70f0856da77cc22bed2dd2c164ee3ea2
SHA1

b9cf5bd0535aeef69010cbc13c35840a5784c319
SHA256

92cc00deeb00c7b9b1d12daba76144e1c34b6510fee3a523a6c4db44567e3509
SHA512

18a5c132f9680eef7b10ed38b8cda63ad8b2f919da68dba1dc6a84191a6a6817109f298a0483a7af70b7b67b774de0e0a786df4e5c3a315d0425222afb7a3882
SSDEEP

1536:hk7J4+GdYLYZPlzgfy0ixccmldWiyUdK1t9voPhfsSCcqib:hk1sYLIt0iU2UdKDu9TSE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70f0856da77cc22bed2dd2c164ee3ea2_JaffaCakes118

Files

70f0856da77cc22bed2dd2c164ee3ea2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c25424ef9bda78ed39fd5b5f20a1172

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
CharNextA

kernel32

Sleep
VirtualAlloc
VirtualFree
ExitProcess

Sections

.text
Size: 512B - Virtual size: 206B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 233B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dsfwer
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ