308f310bf05ea545993b9d09e1d2001c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

308f310bf05ea545993b9d09e1d2001c_JaffaCakes118
Size

50KB
MD5

308f310bf05ea545993b9d09e1d2001c
SHA1

d33941eaa687905d39071219f96c5effb179f660
SHA256

6ea2a7d52c4ae55d605dc99adc969f6c7bda68c7145d563535d899b8f9d5ace2
SHA512

62c1355a0bcd805b6973429ab5fc280473ebf268f237b046f2290389508f5a4198d8d692f7621e5a29748d7f3d1fd47605fe928a02c2782c28d1a461f9a63fe9
SSDEEP

1536:8jbFpI9e0lUY2RWYEy33UU2iD3Tv9coJysT8mB+RTBs:PUXwYEy3D2iDjv9f0zO+hy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
308f310bf05ea545993b9d09e1d2001c_JaffaCakes118

Files

308f310bf05ea545993b9d09e1d2001c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

284e8bbb4f30a875e4267e1928f74236

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleFont
GetProcessTimes
SetHandleCount
GetFileInformationByHandle
Module32NextW
WritePrivateProfileStringW
EnumDateFormatsW
CancelTimerQueueTimer
GetCurrentThreadId
UpdateResourceA
CreateWaitableTimerW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 27KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE