14aed29852530d939a99cab6fef16c95_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14aed29852530d939a99cab6fef16c95_JaffaCakes118
Size

56KB
MD5

14aed29852530d939a99cab6fef16c95
SHA1

40f6b1a6db2f66f62866674fc5c651b642be8827
SHA256

7bd0e4624fd798017898199b32c7457aa36677a8d0cc006a03b8a99f46c34855
SHA512

0c0c673ba2a5aad1181a763da73c2da33e114ccec76d1848952e0e608aaeaddc25604a15240490c77469e2fa2019b698624e02c7330fa4cd447e5146bd15c178
SSDEEP

1536:WWl1gSNEQUNTTWu6XDxDFYv8ksqAjUiR5w6DymvktlWw5c:WWlSSNENTYFU8k/AjFR5wrbE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14aed29852530d939a99cab6fef16c95_JaffaCakes118

Files

14aed29852530d939a99cab6fef16c95_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b19cf3be99f6f3964fc0c083594c6536

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TrimVirtualBuffer
WritePrivateProfileSectionA
EnumResourceNamesW
FlushConsoleInputBuffer
GetACP
CreateJobObjectA
SetCalendarInfoA
FreeUserPhysicalPages
ValidateLocale
GetCalendarInfoW
GetCurrentDirectoryA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE