2adbc6d06c0e20bb2ed2adb7c026d066_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2adbc6d06c0e20bb2ed2adb7c026d066_JaffaCakes118
Size

104KB
MD5

2adbc6d06c0e20bb2ed2adb7c026d066
SHA1

66def5a2b5393347ea624db3b6412f6ae9e2484b
SHA256

b3b719c7b9d3c82bfb80ed042e78e3d78981f2a855de55433a1e8a469ea65d63
SHA512

9087b10b8f41a5a3a2d4660d03475a6aa60e4167d5a13ffd147f464a53b5ad0dccad266cab3f4820b15bed6de3541ef78b3d0d8b3919234a2e04330ff28d2aac
SSDEEP

1536:PtsqF3G4kTxhwuGXbZdyFQ/RtbMxwfl2jO9G91kSodovgJYfPwUIzTf:VsqF243Gu7gwfAjt9aldsKYfPwfn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2adbc6d06c0e20bb2ed2adb7c026d066_JaffaCakes118

Files

2adbc6d06c0e20bb2ed2adb7c026d066_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8e70a9c511a73f7fb6d720cda6245ab6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
lstrcpyA
IsDBCSLeadByte
ReadConsoleInputExA
SetVolumeLabelA
_llseek
CloseHandle
OpenProfileUserMapping
ReleaseMutex
SetConsoleTextAttribute
ExitProcess
GetStartupInfoA

Sections

CODE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack329
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE