2832239cea6c074cc74246ccaf8ecff6_JaffaCakes118 | Triage

Sharing

General

Target

2832239cea6c074cc74246ccaf8ecff6_JaffaCakes118
Size

31KB
MD5

2832239cea6c074cc74246ccaf8ecff6
SHA1

2ea43470ab7bc894b740e33b8c1b43614cc310d2
SHA256

f90b84cb37d475b1e847691ee74449ebcb03639f558702aa5c9e151854e34784
SHA512

638543c4b6df1ba5805652e89b83f700ec62a1218d37cab67b2e84c621f6791b0f4e5766499fb0bcf45beccf46ee67477f628a7389546c8978c84727ef8bc22d
SSDEEP

768:2eETuv/bQBUKvVASmuUHVS0Z74kFevR2h:2rib8vVAZHL4A8R2h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2832239cea6c074cc74246ccaf8ecff6_JaffaCakes118

Files

2832239cea6c074cc74246ccaf8ecff6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b06072a93849773298493d508a8398c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
GetVersion
OutputDebugStringA
Sleep

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 256B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE