a671eb9979505119f4106a990c4ef7ab_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a671eb9979505119f4106a990c4ef7ab_JaffaCakes118
Size

41KB
MD5

a671eb9979505119f4106a990c4ef7ab
SHA1

6ad5841f817f2444e6d5c82409dbc0c5954d7f4c
SHA256

656b956a943318bfc4b23f5f7c1713586a4ab7ed5abc7caf8418008daa211f54
SHA512

197710aa1ce50e5683ea052c7407cbfff3370157c9048c26b178e20d65caeae460c2c423abf28d463bacd354782e0e6e51ac44d204ed47bc7c563bf3c3634ac8
SSDEEP

768:aQVOFaYBPKzieCWBGEtSC/9wWTFXf/9f8fdjTAG7gFsqe81u+9:aQQFaYk7xbSq9w6YdjTAGsFsU1u8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a671eb9979505119f4106a990c4ef7ab_JaffaCakes118

Files

a671eb9979505119f4106a990c4ef7ab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

aeff88f223ddb9c5ea22075191623c6e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
FatalAppExitW
DebugBreak
GetVersionExA
SetUnhandledExceptionFilter
GetLongPathNameA
IsBadCodePtr
HeapAlloc
HeapCreate
ExitProcess
GetGeoInfoA
Sleep
IsBadStringPtrW
HeapDestroy
HeapFree
IsValidLanguageGroup
VirtualProtect
lstrcat

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 483B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE