bae0fddac3a3bf1a82f021a24bf62142_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bae0fddac3a3bf1a82f021a24bf62142_JaffaCakes118
Size

87KB
MD5

bae0fddac3a3bf1a82f021a24bf62142
SHA1

6b1bff80bb0730e9d2957bc59ac94877ba4f8ba6
SHA256

f1f710fdf77f2d1b459d741303f671a3619ddc1a65aaf1a36b4baaead0597817
SHA512

0cc17c4b62b8ea0531fa6f564c2bc91dd06cbc3b596973cc2f6837472b1c1cf268f9082e11852ff9f400f7043de93e59e47c51eec68f3f2d704c72ec490e2a85
SSDEEP

1536:fmQy0IAUxMYpOlmSEz2Gf12nFf6YHBcg2BKH5YP5SCrwKGu2MGDrErJnFa2Vkv3T:O+pgcEFf1CFf3hu5SCsu2oh40kv3VZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bae0fddac3a3bf1a82f021a24bf62142_JaffaCakes118

Files

bae0fddac3a3bf1a82f021a24bf62142_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a2d0577184fd41051363a6ca56770fde

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
WritePrivateProfileSectionA
WritePrivateProfileStringW
GetLastError
SetTimerQueueTimer
SetThreadContext
GetNumaProcessorMap
GetLongPathNameA
GetNumberFormatA
GetVolumePathNamesForVolumeNameW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 41KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE