ff37167202b8846f1aa50d0d05b59f84_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff37167202b8846f1aa50d0d05b59f84_JaffaCakes118
Size

92KB
MD5

ff37167202b8846f1aa50d0d05b59f84
SHA1

77e922e9853a71d4a2655062f094c576ced56754
SHA256

e6454902622fbd92347146ceffd8b2c7487062dc764e3f341dfcaa2c22995ef6
SHA512

5346bc76aaebdffefc111f2f593ccd146b770aecbbf9ea150cfb1df86f68ebe00315051aa90161b158476aadcff4d220156fee0352193820cc5ec344fb87cb9e
SSDEEP

1536:3ctf3OKSAi+ZDZMnGvrMmeYNe8uXOmgrjO16:gfVZMuBNJmM616

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff37167202b8846f1aa50d0d05b59f84_JaffaCakes118

Files

ff37167202b8846f1aa50d0d05b59f84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

adf36e3b58e6fddb8f621df9a2081f4b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
GetStartupInfoA
GetModuleHandleA
VirtualAlloc
VirtualQuery
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
HeapValidate
RtlUnwind
ExitProcess
GetSystemTimeAsFileTime
GetFileType
GetStdHandle
GetCurrentProcess
DuplicateHandle
SetHandleCount
GetCommandLineA
GetModuleFileNameA
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetConsoleCtrlHandler

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ