88ac16d70120f6da3528d32c8d6b4de0_JaffaCakes118 | Triage

Sharing

General

Target

88ac16d70120f6da3528d32c8d6b4de0_JaffaCakes118
Size

81KB
MD5

88ac16d70120f6da3528d32c8d6b4de0
SHA1

1134ba94e5fa2f1f77bf68d62303cc8c67a5b295
SHA256

89aa83dff7036b0c5188c1593af00b2bc30b2b51d6c37b8cb3699e0dc1ff2d9e
SHA512

0a75409e65dba15a589ec50d305058f04247c15702e2620ef2d2b86a38906fda0cb74706a19a496202f2977da27a2cd8960f5bd9edd6247cd447960d994109dc
SSDEEP

1536:qYxV3FMTavkFbrWWyQuk1riFqO4h7298Z5xOdPD3HJDghADD7ASuyJA:qY+OGbKWyQv1mcHRH4d73RgqnDuUA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88ac16d70120f6da3528d32c8d6b4de0_JaffaCakes118

Files

88ac16d70120f6da3528d32c8d6b4de0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

da72c865d9f8b51e9331f05a6df64442

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadLocale
BeginUpdateResourceW
GetThreadLocale
EnumResourceLanguagesA
SetTimerQueueTimer
SignalObjectAndWait
GetExpandedNameA
lstrcatA
FillConsoleOutputCharacterW
OpenThread
EnumSystemLocalesW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 67KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE