261c15272bd427e344286ce78094ecf4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

261c15272bd427e344286ce78094ecf4_JaffaCakes118
Size

76KB
MD5

261c15272bd427e344286ce78094ecf4
SHA1

1155a80c20c5818579104f9a5607580ac3729e80
SHA256

6387b9023629d1382691f84d3c3648dbad6e197d2cd0ebe9b03e140c31eff18d
SHA512

0ee7286d682d644cb3434fb6a35f4ae570cb35df7c8800314361a633b216c2a727b509ce92ebfb8ea2ead0c6b918f30773579008600cc60779f084c62d95be95
SSDEEP

1536:6Dopt+Rae06i5028ilG2d4wtN9cXFBHws03cLqaLvjEErxTWDTMqhGKYIZTET8x:66t+Ue06iYMzGCc1qd6NvjBkMqhGKZTF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
261c15272bd427e344286ce78094ecf4_JaffaCakes118

Files

261c15272bd427e344286ce78094ecf4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a55bd7c22a861c5ece3b47032450c2bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AttachConsole
QueryPerformanceFrequency
SetConsoleLocalEUDC
SetFileValidData
GetDefaultCommConfigA
GetConsoleTitleA
CreateProcessW
SetComputerNameExA
ExpandEnvironmentStringsW
GetModuleHandleA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE