c2249365c5f5113ceae478d96c0be4c6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c2249365c5f5113ceae478d96c0be4c6_JaffaCakes118
Size

144KB
MD5

c2249365c5f5113ceae478d96c0be4c6
SHA1

befce6450fcf2400f3df030bc5988bf765aed20e
SHA256

93a26a55e3dbb0534ba5469cb8b1163bf567324d7870de821aef9daf94c91f6c
SHA512

6f06d08b742121c620f78a0cfa50118b0e40ce5bbc0d6bd9d56b66fef8df8bfa981d59fcc3302b7343dea931cd7e585c4274147331ad4571351250ca05ed4566
SSDEEP

3072:4skhXSRxqrqV+anIk6eHH8xrnTc8Q9OTOXP:4sSSmeQa0xfdGOTOXP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2249365c5f5113ceae478d96c0be4c6_JaffaCakes118

Files

c2249365c5f5113ceae478d96c0be4c6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e561222d513f7be1c3b9a71add7ddaa8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetSystemTime
ExitProcess

user32

LoadIconA
GetCursorPos
GetKeyState
GetSysColorBrush
GetSysColor

msvcrt

isalnum
raise
signal

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ