00ba3ad77e9606815fe09c40f8bdbcd9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00ba3ad77e9606815fe09c40f8bdbcd9_JaffaCakes118
Size

83KB
MD5

00ba3ad77e9606815fe09c40f8bdbcd9
SHA1

8d16e8b15f06b25d268d67d5dffe61a61ed86b19
SHA256

8ee9193d9b820a8d38f1c7665fe70dd3e4dcda393eb349be77fa3227f1db0d04
SHA512

c99c5d68badfba8c12d8f257eef18a1c4a476530327fa0f4ed85d59f75418c481cb44049d22620691e2bde598dbbcc57a3984b16f13a6a81b272b49b23faf010
SSDEEP

1536:8JlUUUfy78AL/pui8r46Y71a27WpR5+6Ya/blkpjVrs2ryrd1vUQuqwcizSkX:8JlUUUfy9/pDXz1a27WpRTr/eHs2qucx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00ba3ad77e9606815fe09c40f8bdbcd9_JaffaCakes118

Files

00ba3ad77e9606815fe09c40f8bdbcd9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

70ff9b1c2d0b5b05cc676a52094db4e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDiskFreeSpaceA
RegisterConsoleVDM
GetCPInfoExW
FileTimeToDosDateTime
GetFirmwareEnvironmentVariableW
FileTimeToSystemTime
lstrcpyn
GetDllDirectoryA
SetFilePointerEx
GetProcessHandleCount

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE