8d6146eed06d626d31499c689dbdacdc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d6146eed06d626d31499c689dbdacdc_JaffaCakes118
Size

275KB
MD5

8d6146eed06d626d31499c689dbdacdc
SHA1

d85b600d2457a5948e92956d1dbb9160aa05a88e
SHA256

01d06594c1418a2f58d827174255e372848d80a1eb037b9ae733e4b21a918cd2
SHA512

f269aed0b8d1d137bac7b3af8c461b57488b9a41e0fa8f6f0559f12f7c58ffdd0317db8ab1daddc71d1accfafc58dc4b79a4d61841441c071a489d17831e7fa9
SSDEEP

3072:jVFKX2GybFw1w8oayTMtu+5x4Rd17bo5PLF0MNseNI3920h:jTKX2b+a8oRTMY+H4Rv7OPLmMN3NIv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d6146eed06d626d31499c689dbdacdc_JaffaCakes118

Files

8d6146eed06d626d31499c689dbdacdc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

cea4e4b7f85ed6d879810c8c36b4ba0f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessIdOfThread
GetCommTimeouts
SetSystemFileCacheSize
LocalSize
GetStringTypeA
QueryProcessCycleTime
GetSystemTimeAdjustment
GetCurrentProcess
GetSystemInfo
GlobalMemoryStatus
GetCommandLineA
SetThreadLocale

user32

GetSystemMetrics
GetMenuCheckMarkDimensions
GetClipboardOwner
GetShellWindow
GetSysColor
ChildWindowFromPoint

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 107KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ