8ae321585fd06e4152a05d6ad950e59d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ae321585fd06e4152a05d6ad950e59d_JaffaCakes118
Size

56KB
MD5

8ae321585fd06e4152a05d6ad950e59d
SHA1

1b4137cc761e4131064d5f1b2314935c0a1558fd
SHA256

c305ef7b9645b06de471644a610ed517b851773b0f61e591c26536cb1eed3af5
SHA512

c742cfc6a5149fd8446d526e20325a2b47c701b6ba221c5ca8eb6020fef78c160caf9fa8f0143d27bfb19af256b1f3b06793d90f1b950c878bc6b8648355e8e6
SSDEEP

1536:jfmOGgmu38QHmPM8wBvX2KXawAq+FEUQhYjJ3Ot1Dem+:jfHmuMQHmPM8whXkFLxjUK7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ae321585fd06e4152a05d6ad950e59d_JaffaCakes118

Files

8ae321585fd06e4152a05d6ad950e59d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9247a60a750391369373d6675cc1fb24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PrepareTape
Module32Next
ClearCommError
SetCommTimeouts
GetSystemTimeAdjustment
AddLocalAlternateComputerNameA
GetTapeParameters
SetLastConsoleEventActive
SetSystemTimeAdjustment
GetDiskFreeSpaceW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE