09ba029442e8af3377985d4af947672c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09ba029442e8af3377985d4af947672c_JaffaCakes118
Size

66KB
MD5

09ba029442e8af3377985d4af947672c
SHA1

7c8a5699cbd93c6a5fa523243581bc84da97f1a9
SHA256

da7f2c71e4499562c20a02a063a2572a51177f520b7d44f8d91815960e4b961c
SHA512

2a61fe3658ede5fc52ecd102b5fb07084c7c08130e91cc91f1ffa96e324451ef3035cb2cbde55f3498a556aae5729e36d3dbc46216d90b0677bf88fa1291f610
SSDEEP

1536:1ZVUUuywgRMp46fEuVMZlT1MIpRc/LOEnGrbh6M8LriFi:1ZOs65ET5M0mGsM8LW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09ba029442e8af3377985d4af947672c_JaffaCakes118

Files

09ba029442e8af3377985d4af947672c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

875a8e616fd9dd5a5c78ee9895ab30cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumDateFormatsExW
GlobalGetAtomNameW
EnumResourceTypesA
LocalCompact
GetConsoleAliasW
BasepCheckWinSaferRestrictions
SetConsolePalette
GetFirmwareEnvironmentVariableW
GlobalFix
CreateFileW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE