16f6cf119ee61b7240735eba4470b4bb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16f6cf119ee61b7240735eba4470b4bb_JaffaCakes118
Size

516KB
MD5

16f6cf119ee61b7240735eba4470b4bb
SHA1

9391e165482d5495d5f69cbe2345cf9ac5792924
SHA256

dc1b5d720bec7d6e59dc2d3f9d6dafa4b6d1f2f3a05029c444f330aaee62cf17
SHA512

04dd406a6aa56db715d37f98f9ecc70aeaed64b728421a4a5279d64f71b18d066b6fc37cfdb1df6ec405d1e10ea7eeda51bdf5d495acfc4a44d4f7a08558ddeb
SSDEEP

6144:rXdR3S4NZED9zRGfKXc/MGJzuSEGfjgUVCGSQIi+kSozLTJ:rXdRnNkRrcfSejX799

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16f6cf119ee61b7240735eba4470b4bb_JaffaCakes118

Files

16f6cf119ee61b7240735eba4470b4bb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3ede871f504dee75b485f08c01cf3ea1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
GetShortPathNameA
ResumeThread
WriteProcessMemory
GetPrivateProfileSectionA
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW

user32

DefWindowProcA
AdjustWindowRectEx

Sections

0
Size: 472KB - Virtual size: 472KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE