c8eed38c112bbf1e2082b2ec8bd6b95b_JaffaCakes118 | Triage

Sharing

General

Target

c8eed38c112bbf1e2082b2ec8bd6b95b_JaffaCakes118
Size

62KB
MD5

c8eed38c112bbf1e2082b2ec8bd6b95b
SHA1

086b41cee212b7721564343a5644fcdae5f6a8aa
SHA256

173f5a2ff940f864c463517a5ac135f3bd14de61fe1e761971741a4f057a9462
SHA512

b4d8db53e43478915a6d85ca20a7a34e6f330e8790efe77e7a8d7ee17c644c386b991864ed2df968c030619ec7328d2e467314ea49c813e9be86c73c4c09f926
SSDEEP

1536:f/ty2H8BNrO2KXN1qiIWznqKAcNYXErkeI2+Ots:f/tydTrOvN10Wz/AcNY0rkby2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8eed38c112bbf1e2082b2ec8bd6b95b_JaffaCakes118

Files

c8eed38c112bbf1e2082b2ec8bd6b95b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9bdf5ac9b56d00bf6856058c627f957b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenJobObjectA
AddAtomA
BackupRead
LCMapStringA
FreeConsole
EnumLanguageGroupLocalesA
SetConsoleCursorPosition
CreateTimerQueueTimer
GetFileAttributesA
ExitProcess
GetComputerNameExW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE