af34ef85b45d28622fd31866ffe9a57c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af34ef85b45d28622fd31866ffe9a57c_JaffaCakes118
Size

113KB
MD5

af34ef85b45d28622fd31866ffe9a57c
SHA1

0c9625ee8c8169e7d0c2a038af83a13be05f680b
SHA256

d86ebd085b7a1b5a51792fcefed60e2287bde174eaf28fa3385a4ac714adca60
SHA512

86f13f337b7420c642daa11d121d709d13bcccc7ea8dd104d43682d25bb90c511d4e7e12b2699700a02f2cd67e57d90cd2d2de64ea56590c4481dc81fdae6787
SSDEEP

768:V4kzIv1TMOCTltlABuKULUexTll98bwGZW3/JjMGmPW:VXIfCPwUweV98MKYh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af34ef85b45d28622fd31866ffe9a57c_JaffaCakes118

Files

af34ef85b45d28622fd31866ffe9a57c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de874d0a802eec8d858b31821a3022b7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualFree
Sleep
ExitProcess

user32

CharNextA

winmm

timeSetEvent

comctl32

InitCommonControls

Sections

.text
Size: 512B - Virtual size: 238B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ