8b59bd5067cb70e16c7307b36b24bc9e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8b59bd5067cb70e16c7307b36b24bc9e_JaffaCakes118
Size

60KB
MD5

8b59bd5067cb70e16c7307b36b24bc9e
SHA1

3dc647d9583956c82ee85bca5ed4866cc39a76a4
SHA256

feb981509a2ef2e541219db2372b9f0abe15df9aff6d8a5ead6dce23d65ca668
SHA512

1d1e240452fdbc49aec8e3308f4d1e18dfcb924cf5c07b5373e6c45b6aeac6adc44238ae18cbc7a489f583744d0b07a6a95186b08c1f3c93ae06ff70f3557a25
SSDEEP

1536:uW5P2ZZsWrbhkW+pUOLUYjnqbHeez7EnlgPCm:P5P2ZmWrbWLuOo8tzlgP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b59bd5067cb70e16c7307b36b24bc9e_JaffaCakes118

Files

8b59bd5067cb70e16c7307b36b24bc9e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c2fe0ac855f65a78192113fd67d83fb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

mddo.pdb

Imports

kernel32

ExitProcess
HeapAlloc
GetProcessHeap
HeapFree
EnumCalendarInfoExA
CreateTapePartition
WriteFileEx
ReadFileEx
CreateFileA

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ