aeeeeceab69d0506fdd334436e1b0bba_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aeeeeceab69d0506fdd334436e1b0bba_JaffaCakes118
Size

76KB
MD5

aeeeeceab69d0506fdd334436e1b0bba
SHA1

c339f91ba9e15f32c4a36ace065ab05c6d5de0d3
SHA256

6a807ef35f39c56acb9f2f1466489fbf351e2686d8615ca2176229ef213073e8
SHA512

3ca48c209f4881265f65445e4aac5d6d390d675bf285126413841b3d8e0157d06e0a7e97696daa080cdc7abde4a4bde783b83fd4c0e8be0a3ed7c0be4b70570a
SSDEEP

1536:vstSiV18tObO1ewK0oVAiOjjB4UIQbUVIvCp1pjVrs2ryrd1vUQuq6:vsYtObOfAcK1QAVMu1Hs2qo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aeeeeceab69d0506fdd334436e1b0bba_JaffaCakes118

Files

aeeeeceab69d0506fdd334436e1b0bba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

87115000842285b27b0abae8e0a70a59

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateIoCompletionPort
HeapAlloc
SetConsoleInputExeNameW
IsBadHugeWritePtr
lstrcpynA
FindFirstFileA
GetVolumePathNamesForVolumeNameW
SetConsoleCtrlHandler
GetVolumePathNamesForVolumeNameA
EnumResourceNamesW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE