241f60b065decb8f9ff4384a407371dc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

241f60b065decb8f9ff4384a407371dc_JaffaCakes118
Size

56KB
MD5

241f60b065decb8f9ff4384a407371dc
SHA1

a755d600090578ae818f78fa5a1f12ac102fd237
SHA256

6337cea2d6c37a3f854a2bbf16eb7a441b976e817b0591a1e3d8ecd3c9d9b6db
SHA512

6378cad5a99864bc013e9dccf40916feb89029e459458659bdc0edae254cd004cdfef58dda845ad1d9436931a0f5df496ef3d72de7f9e5b8c8aaa77a0e44646b
SSDEEP

768:2sufYo58U7bOj1G3Zm68DXb1ORlBigeku1wGLvW+6o4H3LJ0QmtsaHr1tO88KoCP:2gpSXoEJiv28QIexrGFDq9jUwdcD0gj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
241f60b065decb8f9ff4384a407371dc_JaffaCakes118

Files

241f60b065decb8f9ff4384a407371dc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

552cb144b6a641d3d05d50d773d820f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleCtrlHandler
DnsHostnameToComputerNameW
InterlockedPopEntrySList
GetUserDefaultLangID
GetVolumePathNameW
GetConsoleHardwareState
SetFileApisToOEM
DisconnectNamedPipe
SetCalendarInfoW
LocalFree

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE