bfefee70098b6a6827a87cfc868ab876_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bfefee70098b6a6827a87cfc868ab876_JaffaCakes118
Size

112KB
MD5

bfefee70098b6a6827a87cfc868ab876
SHA1

d23fd49c17881c76ab2bd97ec31967b71998c694
SHA256

d8590b91b9e0f3f587156098122e22eb846d681c8a4d6652aded6bc9be1d1b75
SHA512

68f3b02e367514229c3372febddd6b8e2bbc3ed700833ac4ca0b6a294957099cdfdae07f791359b51eb8c888a03c82fbef785805212ef86772d7f5a20c08f56e
SSDEEP

3072:m6mhcApEFlhgEW7NhZ/u1AYE3oRJSIBeFJKa:vzApEVgEW7N3/b3ojxe3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfefee70098b6a6827a87cfc868ab876_JaffaCakes118

Files

bfefee70098b6a6827a87cfc868ab876_JaffaCakes118
.exe windows:4 windows x86 arch:x86

28b40b78689be7e83ccca2ff02354d4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualFree
Sleep
ExitProcess

user32

GetMessagePos

winmm

timeSetEvent

comctl32

InitCommonControls

Sections

.text
Size: 512B - Virtual size: 238B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ