3383b82cb06b072ac4214e1741d163c6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3383b82cb06b072ac4214e1741d163c6_JaffaCakes118
Size

809KB
MD5

3383b82cb06b072ac4214e1741d163c6
SHA1

2d72b05001dca57774c1c866f8624b34fc1ea609
SHA256

a9c383474b73d7ffb544a452b072ee7944ce58d0a743ccff994f1a259ae00e1e
SHA512

c5c08a200fc2ea56fe32b6ecc3ed54fdb4053b74125cceb7dc31946961ba5ef803893315536f62253ee019abfa993f4d0393fad4e0505b8b57b1a950b53fced9
SSDEEP

12288:g38/0lL9s/s/10cYjbOYjG5AWqXNJ9LrZEdytHpzTbJNhkIE4fD9tVYk856WYA2h:y88/9GcYjbOBATXPfEduH1fuOA2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3383b82cb06b072ac4214e1741d163c6_JaffaCakes118

Files

3383b82cb06b072ac4214e1741d163c6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d9994197d55b8aeb99d0bb93b23a74e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LoadLibraryA
GetLastError
GetLastError
GetLastError
GetConsoleTitleA
CreateSemaphoreA
GetCurrentDirectoryW
GetVolumeInformationW
CreateMutexA
VirtualProtect
GetFileType
GetLastError
MoveFileA
lstrlenW
GetLastError
GetLastError

objsel

DllCanUnloadNow
DllUnregisterServer
DllGetClassObject
DllRegisterServer

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.Data
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE