d399b33bc23ea69ac5dfc02f5b4d30ff_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d399b33bc23ea69ac5dfc02f5b4d30ff_JaffaCakes118
Size

33KB
MD5

d399b33bc23ea69ac5dfc02f5b4d30ff
SHA1

3fd82388a73ab6928d82c611f34abb077c416671
SHA256

60ca0b74d93442642bb3c69c5db391e8663a7928111e31e1c2cca628e3d9e7aa
SHA512

eae1dbf96a65382bc44cb61563933c1b866702180794eb6958241c2459816e907a4baa96315dff52f914e8bf5b9c4e4fe2285992c1e7ca0fddcfc81ffb967c39
SSDEEP

384:YTRdxcHy01+NWxTtuJD2Cs1SAtQvkTCEzUZkq44FqzqBkuRFNOHw93qYYFBEVHGI:KRdk8sxJO2CsztiZ4wkuROHwEV+9h1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d399b33bc23ea69ac5dfc02f5b4d30ff_JaffaCakes118

Files

d399b33bc23ea69ac5dfc02f5b4d30ff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fc8ca9a394902025bced87171c0cef97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateWaitableTimerW
CopyFileW
DeleteAtom
EnumCalendarInfoExW
DeleteFiber
FatalExit

msvcrt

__p__osver
__p__winver
__toascii
__argc
__doserrno
__threadid

Sections

.text
Size: 20KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE