93e0b7c2503a696023ea625edc7ea579_JaffaCakes118 | Triage

Sharing

General

Target

93e0b7c2503a696023ea625edc7ea579_JaffaCakes118
Size

180KB
MD5

93e0b7c2503a696023ea625edc7ea579
SHA1

3eaa9d87467f74d4217994ac9154bcd3add91b4d
SHA256

7a2ff8a264c5abdfda9f649bec1fef838000f728a922ca9e938fe6c9c240ff27
SHA512

23e8915f20ceefed4601ca63b9cdeba1d9025c286e603a826f6af471fbe49f7272e2622a9ea70934c0ee2dfc99713f9d8abb03ae174918a4be056baf478ae32a
SSDEEP

1536:x/Yodh1lwPLag6kMgXI4y2+XTB28cq4THu6vNxeVtgvjQQfh+Oo1auDN1AZ/X27t:xQIX4AV6vGVq84hnoJK/ay6BvueT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93e0b7c2503a696023ea625edc7ea579_JaffaCakes118

Files

93e0b7c2503a696023ea625edc7ea579_JaffaCakes118
.exe windows:6 windows x86 arch:x86

421e0afffcd4a5e77b9e1ccc0653343b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CopyMetaFileA
EndDoc
PlayEnhMetaFileRecord

user32

SetMenu
IsCharUpperW
CountClipboardFormats
DdePostAdvise
GetMessageExtraInfo
GetCursorPos

kernel32

GetNativeSystemInfo
GetConsoleHistoryInfo
GetConsoleWindow
GetNLSVersion
LocalFileTimeToFileTime
LCIDToLocaleName
SetEvent
GetCommandLineA
GetSystemTimeAdjustment
GetLogicalDrives
IsValidLocale

winscard

SCardLocateCardsA

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.CRT
Size: 88KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ