08338c32f21789ccebe00086dbc0348e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

08338c32f21789ccebe00086dbc0348e_JaffaCakes118
Size

140KB
MD5

08338c32f21789ccebe00086dbc0348e
SHA1

d2cbf657ce203f130b5ae39d4d187b2a592405de
SHA256

be5217300cd7660dd9ed1294d25e5202f4ab22606a06000286629141cb83e4a1
SHA512

e3639adfece4972bb5673f7c6c8c8dbf19595c3ea4ba4f05b14d9e866c86b39e72b54c147cbcc99e8d26d3c20b75a814c92fb9f04d975bc3817b5c7281a43ace
SSDEEP

3072:OMbm2EyEKAEWdeYfHlQyOlTpR3JAC/QkVXQ9zVfjCgj:OMSDiAEXqlFOlTph/ZXozJX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08338c32f21789ccebe00086dbc0348e_JaffaCakes118

Files

08338c32f21789ccebe00086dbc0348e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b6e2b55994db22391a5e582badda7bd9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
__p__fmode
__set_app_type
_adjust_fdiv
_controlfp
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_except_handler3
_exit

kernel32

GetSystemTimeAdjustment
CreateThread
GetPrivateProfileStringA
LockResource
WritePrivateProfileSectionA
GetModuleHandleA
GetStartupInfoA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ