f569286dbae4642dc733418492c4cf0e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f569286dbae4642dc733418492c4cf0e_JaffaCakes118
Size

30KB
MD5

f569286dbae4642dc733418492c4cf0e
SHA1

1842ef78eef80ff5f76d03aecc6cf005bc543608
SHA256

4035035c6739eca52bd6c5a5b0b19cbc45b3ed42d08983be1fdb157f6d9c6bdc
SHA512

67a190bd96535446e9bb442d13df7862b79074d66ea573c7366f7b8b78d0d2a611e08803a0c690750a84e3257fdb305cd01467076028196d359cab75bc9a4ba6
SSDEEP

768:GJXD3FxVADBiun79D678o+BIGVctz2XQ5P/GRSuDu/WD7:GdD3j2Dgu7F6uctz2ctu9D7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f569286dbae4642dc733418492c4cf0e_JaffaCakes118

Files

f569286dbae4642dc733418492c4cf0e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c4eeafe1c53c498fcd6c506539c65558

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

atof
atoi
_CIsinh
_wexecl
_wfopen

kernel32

ExitProcess
GetTapeStatus
GetThreadContext
GetThreadTimes
GetPrivateProfileIntA
GetProcAddress

Sections

.text
Size: 21KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE