aec236aee87528fff4473a8e69c25906_JaffaCakes118 | Triage

Sharing

General

Target

aec236aee87528fff4473a8e69c25906_JaffaCakes118
Size

113KB
MD5

aec236aee87528fff4473a8e69c25906
SHA1

7b385d62afdca9e6d30eec2e07b6bb5e0871f02f
SHA256

af8885a04540673f6e9341fcea2942c8a36cb88ffe9db637f13e90fd340bb72e
SHA512

c33c35919aa0fcfc0bbe398a4d1112cb4984d6cb16a5c9c713571999b58a381128c4995787b223fc79398cb5a917b25da04f942b2dd8be8fdd723c2e52c92d60
SSDEEP

3072:5zftEp6+hBiCalXCf8TopenVIiyjoJO0BP:5rtEp8CaipoI3MJOQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aec236aee87528fff4473a8e69c25906_JaffaCakes118

Files

aec236aee87528fff4473a8e69c25906_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1c5eba7ca24f5ad8f883f334370082fa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetCommandLineA
GlobalFindAtomA
VirtualFree
GetCommandLineW
Sleep
ExitProcess

winmm

timeSetEvent

comctl32

InitCommonControls

Sections

.text
Size: 512B - Virtual size: 234B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ