6a0829b990fa524d445404e4dfb510e9_JaffaCakes118 | Triage

Sharing

General

Target

6a0829b990fa524d445404e4dfb510e9_JaffaCakes118
Size

91KB
MD5

6a0829b990fa524d445404e4dfb510e9
SHA1

abc90acdeab800dcccaf699c4c368d8e04c75a60
SHA256

154af0b739c3a458fe7f44b0bc45cf4a3d922c824fbaa13a8ce136364f379e3b
SHA512

05d3db6130803282c545a4a9abfe234d546dfe6d68065ce95f3994996612d3e60c78f64c1c3bd0198e1fe9d0b567bb1786b756d8ab6f6b929ea88558ff75eeb7
SSDEEP

1536:WalWmPkrKm6bQJJDNX4EfKm0+pHcs8T2RSsWEWdvqgkzc8YaEJwZK4/83ZoMOArc:WH8dLQFX4EfKspHcbT2RRBkqBhZEXtpG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a0829b990fa524d445404e4dfb510e9_JaffaCakes118

Files

6a0829b990fa524d445404e4dfb510e9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7c5789555eea42553098ef0789a2c81b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateTimerQueue
GlobalAddAtomW
GetVersionExA
FoldStringW
GlobalHandle
SetLocalTime
ExitThread
SetConsoleMenuClose
GetSystemTime
AddConsoleAliasA
GetTimeFormatW
GetFileAttributesW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 35KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE