077ca5cb7d2bcf0429aed509567d6fa3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

077ca5cb7d2bcf0429aed509567d6fa3_JaffaCakes118
Size

69KB
MD5

077ca5cb7d2bcf0429aed509567d6fa3
SHA1

2102240e2db24a4644b2238021f28c7fdc830f2d
SHA256

e41998f58ea66b70e8c173a6af736838f1d309b2da7523a2bae06586ce41c0c7
SHA512

3aa2f2e5f1b1aed650752a0bc5b8e1426a5eef987b77843e1b8fa09500bf0469b625af0b5fa14ed141c49cb929a2fd7a7b674b4ae86222ab92a215c88b177613
SSDEEP

1536:Q5w/XLl7i1+oTszTvkbVpXJKGCRjiDT6MwPpFUHVf12ZyEBgoS:F/bluQvvczZKGyST6zPpFU1f1GyE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
077ca5cb7d2bcf0429aed509567d6fa3_JaffaCakes118

Files

077ca5cb7d2bcf0429aed509567d6fa3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69bbbe68e4f3c6b5886f8683ebb5b09e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceTypesA
WriteConsoleInputVDMW
EnumDateFormatsW
GetCalendarInfoW
SetCommMask
SetCommTimeouts
GetFileInformationByHandle
GetTempPathW
QueryDosDeviceW
GetProcessPriorityBoost
GetProcessTimes
WritePrivateProfileStructA
CreateTimerQueueTimer
GetProfileSectionA
DefineDosDeviceW
DnsHostnameToComputerNameA
WriteConsoleOutputW
ReadDirectoryChangesW
GetProfileStringA
EnumCalendarInfoExW
MapUserPhysicalPagesScatter
GetCommandLineA
ExitProcess
GetStartupInfoA

Exports

Exports

IsMrgmopjk
BeginXyqvbdjekni
EndJnrmmlek

Sections

.text
Size: 5KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE