2eca2fb47ce449e444b461e1f5153ace_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2eca2fb47ce449e444b461e1f5153ace_JaffaCakes118
Size

96KB
MD5

2eca2fb47ce449e444b461e1f5153ace
SHA1

faea1c902ab1310dbdac9b5c024f9ef38b7c315e
SHA256

8ddee2e0689f5b74898d901ef8ccea56a84dba5759f468fdea07f8f54ace9c4d
SHA512

a8fe36c874818d828f0da761c6cc62ca90748d62a77c68b4eda5c86e7d01d447d0e3d07b35f8aedd2a8c59507dc6a815978251ca8c937337080cb303e2a72255
SSDEEP

1536:8wMq6chVPOMb9wkc3/fjSilNNPg0D+5oxwuwE4CbiKsknUjCiDvzaTOMuchXL7V9:8wMKhVPOMb9S/fjSi35g0a5oCuUKsju9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2eca2fb47ce449e444b461e1f5153ace_JaffaCakes118

Files

2eca2fb47ce449e444b461e1f5153ace_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6fb771f6046d8b21a9d1645910d85147

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetSystemTimeAdjustment
LocalAlloc
GetCurrentThread
QueryPerformanceFrequency
GlobalFix
CreateIoCompletionPort
NlsConvertIntegerToString
_lopen
RtlFillMemory
GetLargestConsoleWindowSize
GetSystemDefaultLangID
GetStartupInfoA
ExitProcess

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WEIJUNLI
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ