6208f513b765be4e11d69993053dcbed_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6208f513b765be4e11d69993053dcbed_JaffaCakes118
Size

28KB
MD5

6208f513b765be4e11d69993053dcbed
SHA1

99aa70ec2d699682ecb50a882da73d62a57dca22
SHA256

58162aa0b660730c741634cf7c456708b971880a1e24d874843002d71b66456d
SHA512

6e05e2353bf9b467e30da988afdb6c1cf27000eaf05cda57a933ce4f095abe09333ef3a8773571e95f7e2ee823dabbf509e400f500951da6f495908d962a7d9f
SSDEEP

768:y/q3bi6PA+6HG3/d6c7svQbntVgjgVCw:/W6Pl6GT7s+ntGgVCw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6208f513b765be4e11d69993053dcbed_JaffaCakes118

Files

6208f513b765be4e11d69993053dcbed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6a20622b379dd20ac5a9c4cbb5e67545

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_ctime64
_ctype
_cwait
_cwprintf
_cwscanf
_daylight
_dstbias
_dup
_dup2

Sections

.CODE
Size: 21KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.NewIT
Size: 512B - Virtual size: 221B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE