f8d2a3ce5488b2ec2c0c8da85dcd3951_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f8d2a3ce5488b2ec2c0c8da85dcd3951_JaffaCakes118
Size

403KB
MD5

f8d2a3ce5488b2ec2c0c8da85dcd3951
SHA1

03dc4bac7a139c51db65d24640bbe522bbdcb774
SHA256

32c0a33a77b7d95cda80d42e9381a5929b9452cbf8929655f3194743b2847bff
SHA512

dc56f31821950a7e6c76944bbf7722f865e3e37fda36c2cff98825f5ed23d4897444784f84f6c1234464dd54aefc1bac5c2c91b69f2735995b4aae1e830f1d32
SSDEEP

6144:rDe4AbXkIkl/Yhqp/CWAiNzipj6TKkBGTJ3eI29aq0XBQD0L80KsuXkylqWKvXu:vejnG/lpCWAi1iUmxzF60LuXNKv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f8d2a3ce5488b2ec2c0c8da85dcd3951_JaffaCakes118

Files

f8d2a3ce5488b2ec2c0c8da85dcd3951_JaffaCakes118
.exe windows:4 windows x86 arch:x86

888c4d03534a106487f36a30dd164a24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumePathNamesForVolumeNameW
WriteProfileStringW
SetEndOfFile
IsBadReadPtr
SetFileTime
SearchPathA
DeleteFileW
AddLocalAlternateComputerNameA
CloseProfileUserMapping
ReadConsoleOutputAttribute
SetSystemTimeAdjustment

user32

CountClipboardFormats
GetMonitorInfoA
CopyIcon
RecordShutdownReason
GetRawInputDeviceInfoA
CopyImage
MessageBeep
InSendMessageEx
SendMessageTimeoutA
SwitchDesktop
IsWindowVisible
SetSystemTimer
GetWindowRgn
GetAncestor

Sections

.text
Size: 400KB - Virtual size: 976KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ