3178fd4caea709a84c3933773fba19cd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3178fd4caea709a84c3933773fba19cd_JaffaCakes118
Size

83KB
MD5

3178fd4caea709a84c3933773fba19cd
SHA1

7ad103776e8990e81e0d5cf249dc0dd4f4e10b95
SHA256

192e41914f6825a84c6077082217a3b4f9a580e81bc8ce95cf6802d1471d11c3
SHA512

859e84a1d9b32a1bd113f75f9e7d229c3a9784edb3af7271b23e0f912d7b104b667892d4b4231d938ba22c955f3a4affe29840bf4b7b7f8e5751f5f4b85134ec
SSDEEP

1536:NMMMiaQa3VlUawuNhGvVJ8bXBDJW2pCHNlH9R8ANijEErxTWDTMqhGKYIZTET8ZB:rG33Uawuv4L8pJLpCHNpijBkMqhGKZTk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3178fd4caea709a84c3933773fba19cd_JaffaCakes118

Files

3178fd4caea709a84c3933773fba19cd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0458fd2fbe01e93ed79efa7de8fe54e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStructA
lstrcmpiA
BuildCommDCBAndTimeoutsA
GetACP
FillConsoleOutputCharacterA
GetExitCodeThread
CreateJobObjectA
GetConsoleAliasExesW
GetConsoleScreenBufferInfo
MoveFileW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE