30b13440987ff61ad0960d2b8f57bd13_JaffaCakes118 | Triage

Sharing

General

Target

30b13440987ff61ad0960d2b8f57bd13_JaffaCakes118
Size

83KB
MD5

30b13440987ff61ad0960d2b8f57bd13
SHA1

ff5c655f0886c39304dfc0a2610f223e8f0b35b7
SHA256

d44b575d59e7886e5f8511b8584534cb5692188ba2d87b3adf39695e73de5f3d
SHA512

6a3ac4baf49a028995226c0221e030d0fa9e9ab9ade1d1d2714c6992c2f2d1f494819ed62829f05d5c9952ae101f8734803aba4ee35dd6566d3d3f09dec92d93
SSDEEP

1536:5MxX1gEF/41Y0PzdSbEzosceWANpjVrs2ryrd1vUQuqHGm:50FgEF/4fr0E9WANHs2qlG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30b13440987ff61ad0960d2b8f57bd13_JaffaCakes118

Files

30b13440987ff61ad0960d2b8f57bd13_JaffaCakes118
.exe windows:4 windows x86 arch:x86

75328415a79ce7e6f857811896a06373

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TzSpecificLocalTimeToSystemTime
HeapFree
FileTimeToDosDateTime
WideCharToMultiByte
GetSystemTimeAsFileTime
GetThreadPriority
SetDefaultCommConfigA
GlobalCompact
GetProcessHandleCount
GetThreadTimes

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE