f6cc26223324fd00e19b0899d5d44aeb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f6cc26223324fd00e19b0899d5d44aeb_JaffaCakes118
Size

76KB
MD5

f6cc26223324fd00e19b0899d5d44aeb
SHA1

a21c9b0a29dbdae3477b3353b097f2625a1b0926
SHA256

5bdb1fca8bf81309a9b02ed15720093f60824e3dbc4acf85e410123fce0deccb
SHA512

bd5565b418b09bb3e400863db6b6867e96b116b4d2d4e22f26bbde531facf0f4071f8653b774966ee26643f4aae147576fbc67ed95ee1634841fb1951a3f7fca
SSDEEP

1536:2Psf25X1z6zazNQD01zS+wU4/uTBRO1NmZ4hpjVrs2ryrd1vUQuq6:2NeOuw1mJUtTBRO1NmgHs2qo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6cc26223324fd00e19b0899d5d44aeb_JaffaCakes118

Files

f6cc26223324fd00e19b0899d5d44aeb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d3dd51fde7a8d6ce2eb8b6458bb803b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSetInformation
SetFileTime
SleepEx
GetConsoleTitleA
GetNumberOfConsoleMouseButtons
DeleteTimerQueue
GetVersionExW
GetVolumeNameForVolumeMountPointW
InterlockedPushEntrySList
SetNamedPipeHandleState

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE