225f73634d228cca6c9961c2036ae8d8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

225f73634d228cca6c9961c2036ae8d8_JaffaCakes118
Size

56KB
MD5

225f73634d228cca6c9961c2036ae8d8
SHA1

26a39d8aa45340593d9a2cc18dbc957e6c406bb9
SHA256

92fc208edd4f83d8ab72fd346c618ea52b032bc653505b9a20399c878918ae7e
SHA512

cee72708431af629fe0d3eb1d4d22182a0a746f93985d7321f506fe1b3d091a73c5ea1cbeb9b5437c2095a616e6edf33b88085e4abc34079ea73d60d23c49d77
SSDEEP

1536:/C/MiuvElDzf3HON9mpcg9sNhvVzbtU7bWUMZ7zNGvbVSE6NkXvHA88k7QHwHOag:/LT+iFDPwzIw6jy3VRb6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
225f73634d228cca6c9961c2036ae8d8_JaffaCakes118

Files

225f73634d228cca6c9961c2036ae8d8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f3e9dcd9bce6a43024ee1605f53d8713

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RegisterWowExec
GetSystemTimeAsFileTime
SetConsoleCursorPosition
GetCommandLineW
Process32First
NlsGetCacheUpdateCount
MoveFileExW
GetNumberFormatA
SetComputerNameW
GlobalFix
GlobalReAlloc

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE