13ffdc08ab71cbb21b8af9f26c4b630a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13ffdc08ab71cbb21b8af9f26c4b630a_JaffaCakes118
Size

89KB
MD5

13ffdc08ab71cbb21b8af9f26c4b630a
SHA1

a5e1d63d47f05594c6877b016e83a61723abe149
SHA256

c088507851406acea1ef837b115a5d92020726c92c708ae8d61d3acaf518c774
SHA512

00647dc609b51270f2021419805f9f37967d46b4f9fb3b0ae6fc705c066697f7c783cd4feeba74a2a0c194d2018c8abc95c33521eb85c00dc35811d51e89b049
SSDEEP

1536:ZltTwsWdf06bJMykbrMgBU/E6G7GVNEN63y1lst0DD8xQS1iW:ZltTtWdoyk/XIE9s/C1g1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13ffdc08ab71cbb21b8af9f26c4b630a_JaffaCakes118

Files

13ffdc08ab71cbb21b8af9f26c4b630a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

077db722f2beab8f486150ec6052b2b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
ExitProcess
DeleteAtom
DeleteFileA
CopyFileExA
AddAtomA
WriteFile
ExitThread
GetFileTime
GetStdHandle
FindAtomW
FindClose
OpenFile
OpenFileMappingA
DeleteFileW
FreeResource
GetFileType
GetLastError
CopyFileA
ReadFile
FlushFileBuffers
FatalExit
GetCPInfo
AddAtomW
CopyFileExW
GlobalFree
CreateDirectoryA
FindAtomA
GetPriorityClass
ExitProcess
OpenFileMappingA
GetCPInfo
DeleteFileA
GetLocalTime
GetFileType
AddAtomW
CreateDirectoryA
AddAtomA
GetStdHandle
FatalExit
DeleteFileW
GetPriorityClass
FindAtomA
FlushFileBuffers
OpenFile
CopyFileExA
GetFileTime
ReadFile
ExitThread
FindClose
WriteFile

Sections

.g7d9
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.4f75a
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3860
Size: 43KB - Virtual size: 410KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.96adh
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ