102c196d02a6bbd94f635867e6b375f4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

102c196d02a6bbd94f635867e6b375f4_JaffaCakes118
Size

80KB
MD5

102c196d02a6bbd94f635867e6b375f4
SHA1

29ff6084e6cee5d3c14dafd4ba1b85568ed1b871
SHA256

a11ea262f5933a5d17a137bb3f22a608b1c08bb0c9ad9c6975e5f653ace96503
SHA512

ecab5f5325bb72ab63af4103eb7db05ea655115a33a0ef4d347c5d6cd34c45d1859aff6dc62c99fa70a2d7b42198ec80242f42494a03f0f9265072a860f96d9e
SSDEEP

1536:m063N5AGdXQKfkdo4PE6uA18sbiS/iXT82hW8fPL:xaNyG1/fkdd8plsmS/i8vYL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
102c196d02a6bbd94f635867e6b375f4_JaffaCakes118

Files

102c196d02a6bbd94f635867e6b375f4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3f54ae95ef1cc9dcd431b21333e77db2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomW
WaitNamedPipeW
CancelDeviceWakeupRequest
GetDllDirectoryW
GetUserDefaultLCID
SetConsoleActiveScreenBuffer
GetFileType
GetDiskFreeSpaceA
EncodeSystemPointer
EnumCalendarInfoA
VirtualFreeEx

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE