29a59689b4510f957d9b279792a7737a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29a59689b4510f957d9b279792a7737a_JaffaCakes118
Size

404KB
MD5

29a59689b4510f957d9b279792a7737a
SHA1

344f5a76e3d0bfb32859dc6927e20bc6fbb6d031
SHA256

4d06185cf68de5f746b542b2d6901f4d88c728a3f14bdb958b8c17230a5d5497
SHA512

747e900c8f10db42b0bf9b9e1d61799961fee2add290ea5c3e245533b3395f8c0e765a6bd880864fcab2bf658c8777c9bee0ae441fd436ad151f451d6fbf1905
SSDEEP

12288:ie5uqkNEIYO8i0k18O9dFjlJmCmxrkVAQ0VJK2:ieqyI9kqysAQEc2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29a59689b4510f957d9b279792a7737a_JaffaCakes118

Files

29a59689b4510f957d9b279792a7737a_JaffaCakes118
.exe windows:1 windows x86 arch:x86

b6a83d73a0b95c9bf0e35abb8b13c891

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetStartupInfoA
GetCPInfo
GetLastError
GetLastError
GetDateFormatW
WriteFile
MulDiv
MulDiv
Sleep
lstrcpynW
lstrcmpW
WriteFile
GetStartupInfoA
GetCPInfo
lstrcmpW
GetTimeFormatW
ReadFile
TerminateProcess
lstrcpynW
GetStartupInfoA
GetStartupInfoA
lstrcpynW
GetLastError
lstrcmpW
lstrcmpW
WriteFile
GetLastError
GetFileSize
GetLastError
lstrcmpW
MulDiv
GetFileSize

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qley
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE