26b1c8e33c3ff90d6f6a2e4a85d27186_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26b1c8e33c3ff90d6f6a2e4a85d27186_JaffaCakes118
Size

132KB
MD5

26b1c8e33c3ff90d6f6a2e4a85d27186
SHA1

4786143974b3ad3406a28ef1c262f5138201735b
SHA256

cd3e4fc612a8a7a54405428b6cbd6eae5b839260638b9ca99534139628e32e92
SHA512

36f888084743af2257e53e04f5b63f8e7ccad126eea452872d740ac65f4487397ead25895d63733277c05116552dcd277b45f413fed3ed7e57a96b7a86226ba9
SSDEEP

3072:NqTOeXmJxnXUssdUar1EYJ710d3rpZPBBg1ouF41O:UC3kBb1rJ71OrpjHe41O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26b1c8e33c3ff90d6f6a2e4a85d27186_JaffaCakes118

Files

26b1c8e33c3ff90d6f6a2e4a85d27186_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e9db732435acb92cc06ddc2fec58bc0b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetThreadTimes
WaitForSingleObject
GetCPInfo
CancelDeviceWakeupRequest
WriteFileEx
WaitForSingleObjectEx
VerifyConsoleIoHandle
SetCommConfig
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

PESEC0
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

PESEC1
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ