27ccf1178b8a72e39774b21872820e27_JaffaCakes118 | Triage

Sharing

General

Target

27ccf1178b8a72e39774b21872820e27_JaffaCakes118
Size

29KB
MD5

27ccf1178b8a72e39774b21872820e27
SHA1

f48e172f47d32add20b4f6d66b5c5aa39959ea40
SHA256

d21854661bf8ddca22dcf863f7049ba79889c7c5c3d901229f2acd19697cd909
SHA512

ed05d82e44fd02a50739f215501c16c8b9f532d4181b71314633ffc9064e8552b9c04739d15a722b1464e9731b7331faa72047fdac5aa9a0e1957e20f9cf8c04
SSDEEP

768:I2BG/dZCbCz6sCCaC3DcYUH2LzWleGrkCpQT4BZ:IZZ4cT2HWWleGw8QT+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27ccf1178b8a72e39774b21872820e27_JaffaCakes118

Files

27ccf1178b8a72e39774b21872820e27_JaffaCakes118
.exe windows:4 windows x86 arch:x86

42e15e59a49b98842cf4e242a1fecf40

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceA
GetModuleHandleA
HeapAlloc
HeapCreate
LoadResource
LockResource
SizeofResource
VirtualAlloc

Sections

.text
Size: 1024B - Virtual size: 947B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 254B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ