01f671630e5e1f173b15c9127458f268_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01f671630e5e1f173b15c9127458f268_JaffaCakes118
Size

12KB
MD5

01f671630e5e1f173b15c9127458f268
SHA1

6c59485aeb1d4f741676740e087359bf780cfaf6
SHA256

1534d1372572029a0b0a9b57d975beeed4990721999bd4672ef902e97533e14d
SHA512

c353f7dfa5a1dc5f42479e0c5a38d9774d8a84927e882b463fc5626d2b1c0fba56bce3133f196c5f089b247c940f8c2c7b2f3eb2434426cf90318ac10753a07b
SSDEEP

192:nFOMGX1Q6UyBQtUIP+NmnoCOT8ch1V7uvtkZVpQSKRL9G/nq:o26UyBQtU9NmazgupQSKRZZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01f671630e5e1f173b15c9127458f268_JaffaCakes118

Files

01f671630e5e1f173b15c9127458f268_JaffaCakes118
.exe windows:1 windows x86 arch:x86

ade763ff1591d88a113a48bf9aeb02fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateFileA
ExitProcess
GetCommandLineA
GetFileSize
GetStdHandle
GetSystemTime
ReadFile
SetFilePointer
WriteFile
CloseHandle

Sections

CODE
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE