f6e1a95f65ee742ff8c0b0ad8548fd7b_JaffaCakes118 | Triage

Sharing

General

Target

f6e1a95f65ee742ff8c0b0ad8548fd7b_JaffaCakes118
Size

21KB
MD5

f6e1a95f65ee742ff8c0b0ad8548fd7b
SHA1

0957f03c6e74033f431e76a8c5248ec1a3c24502
SHA256

85a0b51d283529b98b33f9dadb14b2ca499bfaeee1b215fd5345300e78a2691b
SHA512

b5ed67921fdbef277efc25455a09c74bfea0d91ab48245265cf228b6060e87775504042c263341d92cc25f53abba42558a9df0c567bf55dced8a687b2588f6a4
SSDEEP

384:mDihPMqbier5PNJIXhT1O0h3xFDtf/7kVjF13CIDZ9uDLlNv6nIWSdkfOJYv:Dh0qbier9rAhT1Oqh//Y513CId9uF5ZO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6e1a95f65ee742ff8c0b0ad8548fd7b_JaffaCakes118

Files

f6e1a95f65ee742ff8c0b0ad8548fd7b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

2eea30b1bb0d6ce682eb0375964eca69

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WinExec
CloseHandle
GetTimeFormatA
GlobalFix
Heap32Next
HeapCompact
GetVersion

msvcrt

strspn
sin
cos
wctomb
wcstol
wscanf
strcpy

Sections

.text
Size: 11KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE