256dbb02d66cc1821ca7d0c1531e65c8_JaffaCakes118 | Triage

Sharing

General

Target

256dbb02d66cc1821ca7d0c1531e65c8_JaffaCakes118
Size

180KB
MD5

256dbb02d66cc1821ca7d0c1531e65c8
SHA1

d3ea4dd5f771a4095ec3ae11e2540ff542548ba8
SHA256

d0b820fd1a974b0f97a7a3161792af9cae4cdf8a998734d4fda4528db16b6544
SHA512

ccffa929b23089507ea7a92a2af594f19fe2e11861fadca7fa3f8b1db6cd7eb3e38173989df21876b971101dacf353890203bc27ebef64b9df9ce589e99a5b2c
SSDEEP

3072:Vmiy0pMVlXUn+uuPV75V+L1Zlr0bwpUI+o0nhm/z6wKZ94vnpu1sv11:fy0pek+uSRSdrWwpUI+o0Gz6wKAu6t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
256dbb02d66cc1821ca7d0c1531e65c8_JaffaCakes118

Files

256dbb02d66cc1821ca7d0c1531e65c8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b5fae144500534626f7330ce7b91dd05

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsCharAlphaW

kernel32

GetVersion

advapi32

CryptDestroyKey

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 334KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ