ab6c7466704daf9d485441b87beb708c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ab6c7466704daf9d485441b87beb708c_JaffaCakes118
Size

37KB
MD5

ab6c7466704daf9d485441b87beb708c
SHA1

1982abe67bf0e63e582393bf816f255d40740807
SHA256

af3e3fcad749cda9d46ffcad7421b037600690093ec69de3a3b562e49ea449ac
SHA512

7d51323e6ec0b3c5df82c046800c8271a77c4194b952bab42f3e7ec62bdc7e9f482f0e1db302a57a6951aafae99cb9c0fd34de122b716cab6e6ab09c341dc2de
SSDEEP

768:65eao5Yt8cTA2UAz7xG8hDw2ZIEm034QjCojFd3V0Mc:6Vo5Yt+2Rc81w2ZIdqjC2Tl0M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab6c7466704daf9d485441b87beb708c_JaffaCakes118

Files

ab6c7466704daf9d485441b87beb708c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c6499b40ab965a3f7cd67167c47d5c47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFirmwareEnvironmentVariableA
GetLastError

gdi32

SaveDC

Sections

.text
Size: 23KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bbzd
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 187B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE