28e6764825b414269e499ba24f1b4627_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28e6764825b414269e499ba24f1b4627_JaffaCakes118
Size

56KB
MD5

28e6764825b414269e499ba24f1b4627
SHA1

8f089dafcb605153e6bb490c528ef2472eb27d00
SHA256

ab22b89a262573f856e7d85d82134497fe85af54ea67adc89d7466cf0996ab66
SHA512

68d2f43d255192c2dddc96022e5ca361df2e6953f4825625f30eff153ca80585f8cd75e6fbcb476e2b9da54d9a3d0e8035de599f67ea0618b0231959964d2283
SSDEEP

768:oHpaT9UMYm0hl2cm3KkYtW/udEU6mdIZTa+2HVn23ga3j+GX6uh2l1hw/Isjxeki:8aT9eXQGN6NZT21n8VVekvEc/JP9nw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28e6764825b414269e499ba24f1b4627_JaffaCakes118

Files

28e6764825b414269e499ba24f1b4627_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5efc6b3bb958b8ab6fe0fc343ac6ffbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TransmitCommChar
InitializeCriticalSection
DeleteTimerQueueTimer
GetAtomNameW
CreateTapePartition
HeapAlloc
GetSystemTimes
FatalAppExitA
VirtualAlloc
BuildCommDCBAndTimeoutsA
GetPrivateProfileIntA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE