eab402659b5dc4d46dcc21c42766050c_JaffaCakes118 | Triage

Sharing

General

Target

eab402659b5dc4d46dcc21c42766050c_JaffaCakes118
Size

21KB
MD5

eab402659b5dc4d46dcc21c42766050c
SHA1

af096867212a31a60d60942f6571c7538ae63a75
SHA256

e26fd2ca809704023ac71806bba51f12abe020403438ce882c4d53b68dc827a0
SHA512

6904365b8be523979792325ec56a3e7bd97aca63060315225e1f04ab86a8b540d23e6820710e24306a5759c163d09ef394557813ce96c1423d7d9c0fc49bb33f
SSDEEP

384:hk1gsLEROeWAZHF7EyBhRpaKDFyRdsm+9HNPD+gxmGUfoM:7si3lzvyem+7aXxwM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eab402659b5dc4d46dcc21c42766050c_JaffaCakes118

Files

eab402659b5dc4d46dcc21c42766050c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fb8e4f9982923b676ad8e6a9f8fe2119

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
lstrcmpiA
DeleteFileA
lstrcpy
TlsAlloc
ChangeTimerQueueTimer
CreateActCtxA
GetThreadPriority
GetVersion
lstrcmpi
DeleteFileW
GetComputerNameW
GetFileInformationByHandle
GetFileAttributesExW
SleepEx
GetLongPathNameW
OutputDebugStringW
GetProfileStringA
GetTimeFormatA
GetFileAttributesExA
CompareStringA
TlsGetValue
Beep
GetModuleHandleExA
GetModuleHandleW
GetCurrentDirectoryA
GetVersionExA
GetSystemDefaultUILanguage
GetShortPathNameW
OpenEventA
_lopen
GetStartupInfoW
GetAtomNameA
CreateActCtxW
lstrcmpA
GetLocalTime
VirtualProtect
GetLongPathNameA
LoadLibraryExW

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ