0477f27720fae7116f753d56c5fe967b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0477f27720fae7116f753d56c5fe967b_JaffaCakes118
Size

60KB
MD5

0477f27720fae7116f753d56c5fe967b
SHA1

e19183abe062f8db29a18dc2b9b5c4c20ffeb842
SHA256

feef7ce15e70a61b50d611971f2beef9a2c22e1475871e2e063ae11843871394
SHA512

66d3ad552f76aa22f364b82b5ac58b50d6b678fe4ea98f7de3906badd4483c46ee0f6d5e186309db08ea09edddd4a1c022eab6d847839218c64d8d4ed5eb54ca
SSDEEP

768:0iSdtfue75UdYdgU90Qazn2l+1J9hpZyo2/eLpU9XIaQqlJLArny5CDp:hSDmCUdDlL2KJ9L8uLi9YrqcLy56p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0477f27720fae7116f753d56c5fe967b_JaffaCakes118

Files

0477f27720fae7116f753d56c5fe967b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a683af83eaa8e1a9bbb7155887a9fd4f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
WritePrivateProfileStringA
GetTimeFormatA
UnmapViewOfFile
SetFileApisToANSI
GetPrivateProfileIntA
GetConsoleFontInfo
EnumSystemCodePagesA
CreateThread
GetLocaleInfoA
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

atsec0
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

atsec1
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

atsec2
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.atsec3
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ