ea219d0ac77697241e77662487c080f4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ea219d0ac77697241e77662487c080f4_JaffaCakes118
Size

32KB
MD5

ea219d0ac77697241e77662487c080f4
SHA1

c7de9fb5929c66a8fdb40d75cd0a818a995a4141
SHA256

41ac995c45b79f5703f39de82bf59398d38f39546168c9a415086a494f5b4131
SHA512

fdc3d4ce72b9db63ae974af384ed741dc58b55128ba2a4f5a50d881f89ee84391a8bef656e8578c93aaf83456ec4bf4cf544f8eb57bf7d8d8183c9e9afa3b944
SSDEEP

96:TCHbl9YD0RR+ce6c+wJwh03eKNdu4Bo/O94JU6Zuxt+gm3W:TkYDQleqwCKxrBoW94HZuxt/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea219d0ac77697241e77662487c080f4_JaffaCakes118

Files

ea219d0ac77697241e77662487c080f4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eee15328d1a320f736117eadcb4fdfec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
FlushConsoleInputBuffer
GetCommandLineA
GetConsoleMode
GetConsoleScreenBufferInfo
GetLocalTime
GetStdHandle
GetSystemTime
ReadConsoleA
SetConsoleCursorPosition
SetConsoleMode
SetConsoleTextAttribute
Sleep
SystemTimeToFileTime
WriteConsoleA
WriteConsoleOutputCharacterA
WriteConsoleOutputAttribute

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 946B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 617B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ