2cc35c01ec3a6a8dfc648979a22607dc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cc35c01ec3a6a8dfc648979a22607dc_JaffaCakes118
Size

184KB
MD5

2cc35c01ec3a6a8dfc648979a22607dc
SHA1

eed93289e3978952213dd9941b882952166f20ad
SHA256

f76f605d5b5f8f00ca44cb314247a0a1d0b3965d02d18d96e64a0d529819dc8e
SHA512

9ae2d635a93ba4339c4565923d088e23d5e5f6a596c7ab062dd7c083cd4a9a889e827c1564bd93790d8989ba9a1dcb4bab713af8a03f01f9ee36c06c3acdbeef
SSDEEP

1536:CJqOzdmc19Wb+rhNUZTCRH6CVhJj4stK4SayFOUtUIzzoi17:MzdmSh65mBhR1txk1oK7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2cc35c01ec3a6a8dfc648979a22607dc_JaffaCakes118

Files

2cc35c01ec3a6a8dfc648979a22607dc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bbd7de3dc4f4ef260f2c8a09444ed3d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetCommandLineW
GetLastError
GlobalAlloc
SizeofResource
VirtualAlloc
VirtualFree

user32

SetTimer
GetMenu
SetScrollRange
GetTopWindow

Exports

Exports

rja
BmM@16
_qO@4
A1@8
_0VV
BFr@4
_b@16
_npR
jz1
IlD@4
_neK@16
_Iy
Ff@8
fJ
G_@20
cb@8
OI@20
_2Fx
_wa7@4
pVX@4
ls@8
_DrE
na
Mns@16
jIR@16

Sections

CODE
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hdata
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eddata
Size: 512B - Virtual size: 440B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ