b52554314728518a434dbefd7106246f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b52554314728518a434dbefd7106246f_JaffaCakes118
Size

62KB
MD5

b52554314728518a434dbefd7106246f
SHA1

4090d280ce0d214209235aca11092336812c72c8
SHA256

de60115eb08551c4a1669ee1eade840150c474a9ab990b2a576dfcd63545eb04
SHA512

a2be9aed0b7b72ffdd4893fc2540d8a7a9564a1cd42680ad9fb4178fb0bd1f5ad8078161060396e500e0206e3812f9ad9f3aaf93b673eef51a91b613051562f4
SSDEEP

1536:c04fGcZ1OL8JbOJDxVETNmbqnR4g4jjzyamKf2JB96:P47k8JOxVEM2nRLCmaH23c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b52554314728518a434dbefd7106246f_JaffaCakes118

Files

b52554314728518a434dbefd7106246f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

be84aa26b0a07485bcee55a7a4db1b5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumDateFormatsW
CancelTimerQueueTimer
CopyLZFile
SetStdHandle
GetProcessHeaps
DebugActiveProcessStop
WideCharToMultiByte
RequestWakeupLatency
GetComputerNameExW
SetConsolePalette
DeleteVolumeMountPointW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE