227eace1e06cdf83147cb3c2a82ee9f9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

227eace1e06cdf83147cb3c2a82ee9f9_JaffaCakes118
Size

78KB
MD5

227eace1e06cdf83147cb3c2a82ee9f9
SHA1

7b2e994e75f07b5f596af069de16e19a140e0947
SHA256

68c4d54700480d67cb4cbc4757e2d0e1901502bcefdb4ce81479850937cea617
SHA512

d4c9df719715dd47f7b257f258d9034f76a1d34d910f16614c2d31b7e0ae1cc20a5a911df0fa0d24cd3957180884d9c1061890e9af4ee0e68b29056b04a760cf
SSDEEP

1536:SKNOinW3Lz1IH5dH67/4efo1d5m2ZrQW6uFvdFNf1BnJNP7dcjzX7:jONbzge/do1W2ZrNdFNf1NjdGzX7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
227eace1e06cdf83147cb3c2a82ee9f9_JaffaCakes118

Files

227eace1e06cdf83147cb3c2a82ee9f9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6941d5794092c3f84e4d68a49a9a457f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DelayLoadFailureHook
SetTapePosition
GetModuleHandleExW
AssignProcessToJobObject
GetUserGeoID
GetComputerNameA
GetAtomNameW
OpenWaitableTimerA
GetConsoleHardwareState
EndUpdateResourceA
RegisterConsoleIME

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE