27109fe98daab826449e3254113dfa07_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27109fe98daab826449e3254113dfa07_JaffaCakes118
Size

59KB
MD5

27109fe98daab826449e3254113dfa07
SHA1

052b6d14bd5a72c60a4c3444025eb5cab479d18f
SHA256

f59be2b4933dfdbea6df1581f5ad2214fa24517b7ae9c5c5fd9f30c1ee335330
SHA512

0431290728e1d6b21531d8c088c57a1cd7cd9e2ed3517ecaef169ba57bbff0e0464eb06c3c9d9a04ce788b4dbbd9bb85a0c8e73da33cc2f85ce6b96219cf8129
SSDEEP

768:S5Su878Z+JmBw//xm2L1RBubyHTotCVt5wvK/HEsG0/wqd2ITC8ZVH6UM1Quwc:cSug82cS1Rg2zotCP5/PEz0/wqA8okc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27109fe98daab826449e3254113dfa07_JaffaCakes118

Files

27109fe98daab826449e3254113dfa07_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b5a37b9c281e2b70e2da53e046418127

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
CreateProcessA
FindFirstFileA
GetConsoleMode

user32

GetWindowTextLengthA
InsertMenuA
DrawIconEx
DialogBoxParamW

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 21B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 330B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ