88445d3ca453ea77d16183642ca98f46_JaffaCakes118 | Triage

Sharing

General

Target

88445d3ca453ea77d16183642ca98f46_JaffaCakes118
Size

63KB
MD5

88445d3ca453ea77d16183642ca98f46
SHA1

cdeb923349480bc99d31b1187043c5bf4ca53100
SHA256

983bccc66abc04b139308104d9013c38bf5bb7ce91d20053af734debb7980f2c
SHA512

071f405d3818b8b76cbb92f4157766d65cb024f941d663071a77e2f37c4b68f0e2c9d68fcc4ec5217fd74d1bae082dae3d0331b4d8258b6b72f548210ebf875b
SSDEEP

1536:RtNYEhWvQrBBku7bSS09MBkX0l/Gi9/pCY6zpQcBEFXwWEoY:RFNrf75kX01Gi9kYXtFXwW0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88445d3ca453ea77d16183642ca98f46_JaffaCakes118

Files

88445d3ca453ea77d16183642ca98f46_JaffaCakes118
.exe windows:4 windows x86 arch:x86

92c66039d6088fa795c6f0eb6a5229fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
GetTimeFormatA
SystemTimeToFileTime
GetPrivateProfileIntA
SetThreadContext
ReplaceFile
GlobalWire
SetCalendarInfoA
GetLogicalDrives
_lclose
GetConsoleAliasExesLengthW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE