ddf1b01a72c25d8db3ace950f0b3a7a8_JaffaCakes118 | Triage

Sharing

General

Target

ddf1b01a72c25d8db3ace950f0b3a7a8_JaffaCakes118
Size

63KB
MD5

ddf1b01a72c25d8db3ace950f0b3a7a8
SHA1

a2ba07498d8a0e1d4c652429efed70146bb68ab3
SHA256

d6ba93e1e40d59f78ba32b446a3b57521b813159d6e7d3e51940c77f215b82ea
SHA512

c6d2cb6a92b3d3c17e615b79047390da29dbf6ba3a4e9e80a221b53c92d556cd562cd942c8a39b1ad19013f4a05da6e2735fa33e976cc531a0a003873226059a
SSDEEP

1536:CiVOh86onxW3zCI7GBmJdzDL9cZAvvh/DMFDBUV:C8FJxW2RBEMAvvRs6V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddf1b01a72c25d8db3ace950f0b3a7a8_JaffaCakes118

Files

ddf1b01a72c25d8db3ace950f0b3a7a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e65540e78607d37bc87f0af3440e0518

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetTimerQueueTimer
EnumCalendarInfoW
EnumSystemCodePagesW
GetTempPathA
SetFileShortNameW
SystemTimeToFileTime
FileTimeToLocalFileTime
GetCompressedFileSizeA
DosDateTimeToFileTime
CreateMemoryResourceNotification

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE