f4fde2b1e1f84e88f5af98a8935e6cbe_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f4fde2b1e1f84e88f5af98a8935e6cbe_JaffaCakes118
Size

181KB
MD5

f4fde2b1e1f84e88f5af98a8935e6cbe
SHA1

64eb15e4872b6b405819d5ea5a05f891b2b2b432
SHA256

63d3799ec443ee636681f4ce35ad30f9f8eeb85fa0ecffdfa50f1e7f961ec375
SHA512

cbe432844a74a7569a04fea71c162bf8271b6a5c6c22665b564c97996467917227b23d04d506562c4575d86be39ab120f26531b20fde6111d3248ed35ee91dfa
SSDEEP

3072:WxMgZjOUQqALXfpkSHt0A3faKDA3hway+2uaOcxj83h2HEEI:W+qIpFtFlw/2Hn23h3E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4fde2b1e1f84e88f5af98a8935e6cbe_JaffaCakes118

Files

f4fde2b1e1f84e88f5af98a8935e6cbe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f70f8f88bfed98b5d58d0b6fcdad7112

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageA
GetDateFormatA
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

TranslateAcceleratorW
UserLpkTabbedTextOut

gdi32

GetClipBox
GdiConvertPalette

Sections

CODE
Size: 5KB - Virtual size: 811KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE