d14e2e29e3ad88f2359250deea8c5b92_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d14e2e29e3ad88f2359250deea8c5b92_JaffaCakes118
Size

290KB
MD5

d14e2e29e3ad88f2359250deea8c5b92
SHA1

deb7db5dfec1dd0432da5fc0b86fd76af57052f7
SHA256

c58787398135a4439b0c37e353e51a3d8471140a79905ddc05a62327b6a337aa
SHA512

b830e78a6bf8ac51b7bef19c3f8b9ee45b249f090d95312484ea2f69cb6e2ac92baf169f8c1f1fe8afc1861fb3493d43ce6865b64d3990653501d886e97ffa3e
SSDEEP

6144:Fltfghg+oa7YreCtp4XLNAohW2ocGo1xZr5M4OWNo:FLusrZ4XLNAMW2wox5MLW2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d14e2e29e3ad88f2359250deea8c5b92_JaffaCakes118

Files

d14e2e29e3ad88f2359250deea8c5b92_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

OInfoP11.pdb

Exports

Exports

_ctime64
_gmtime64
_localtime64
_mktime64
_resetstkoflw
_scprintf
_scwprintf
_time64
_vscprintf
_vscwprintf

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rol
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE