ff8f6727cee0ea7bb38896afd54b653f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff8f6727cee0ea7bb38896afd54b653f_JaffaCakes118
Size

16KB
MD5

ff8f6727cee0ea7bb38896afd54b653f
SHA1

21b47edad3e5059a3d585ee7561ddc75cf0f1213
SHA256

8e09977fdaa3f8897bf7734d788de787c68906b751dba911c44025f59453e7c4
SHA512

a088e7d0a423803311ae23961e4bb2def7e8b69985a3ce03bf14b1ec5b49eb20b1672ea49472b00a3e88da20c2a2d39e91bf91ff396d81737d5ea4fa657c1ff5
SSDEEP

192:v577EISy9SKZlLjqO82gt3mosFgO74xfQrVBRHeNiZrFEAGFaV/7WGb4tid1msdc:ey/vTXgt3mo2IorQD7ooJyytyM7Mo9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff8f6727cee0ea7bb38896afd54b653f_JaffaCakes118

Files

ff8f6727cee0ea7bb38896afd54b653f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7605e41e1a3564aa3d23cbfe846d95af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
LoadResource
SizeofResource
LockResource
WinExec
GetCommandLineA
GetWindowsDirectoryA
SetFileAttributesA
CreateFileA
WriteFile
FindResourceA
CloseHandle

advapi32

CreateServiceA
CloseServiceHandle
ChangeServiceConfig2A
StartServiceA
OpenSCManagerA

Sections

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ