f0f206f5407ebc2d1a97875dff2df8f8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f0f206f5407ebc2d1a97875dff2df8f8_JaffaCakes118
Size

212KB
MD5

f0f206f5407ebc2d1a97875dff2df8f8
SHA1

4618a4adae1e70e59e109886ac584538dfc78474
SHA256

80bfdbf85aa832e23096ddd2bb10b3a2e088628a92798623cec28f675c12a4e4
SHA512

b803cb5e73fb11a162d58750f37c780b071102c52ec5f787e2cf3b4129449bb423f58450e912494b287b662ef43bc90294f39b62f59855a058963d2f7fcdfff8
SSDEEP

1536:cCf1iwuEpjDQH2YAaqpbdUmIO5f57fwkwgzb5/jCaDkpEcQu2ZcmmZprMq7nWh6J:cE1HuPzAaq3Um115LXB/G8EVjByi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0f206f5407ebc2d1a97875dff2df8f8_JaffaCakes118

Files

f0f206f5407ebc2d1a97875dff2df8f8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a1474261192e972206cf97b041f5729d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadModule
GetTempPathA
GlobalSize
GetLocaleInfoW
OpenFileMappingA
GetModuleHandleA
PeekConsoleInputA
GetConsoleOutputCP
lstrlenA
GetCommandLineA
MultiByteToWideChar
GetModuleFileNameA
AddConsoleAliasA
GetCommandLineA
VirtualAlloc
GetCPInfoExA
GetSystemTimes
GlobalMemoryStatusEx
SetConsoleScreenBufferSize
SetComputerNameA
GetModuleFileNameA
TransmitCommChar
OpenJobObjectA
VirtualLock

shell32

SHGetSpecialFolderPathA

mpr

WNetGetConnectionA

winmm

timeBeginPeriod
timeGetTime

Sections

.idata
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 200KB - Virtual size: 481KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 804B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ