36229b90a9bfd49839117e344b2c5eea_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36229b90a9bfd49839117e344b2c5eea_JaffaCakes118
Size

76KB
MD5

36229b90a9bfd49839117e344b2c5eea
SHA1

c6cd35907b2027c824e0e26208eb2a6c4aadc4a2
SHA256

f2be6bc15e5aa71f9e981ad1a58e21fa8a42b3f5225ecd91a7adb4bc05176120
SHA512

723575e4a93368e60b6898af58fc108b27601bc3d0e0f7315682b972daa8a4a08cd23e58afe2b7a0646ac902778e97be8a64bb2673cb3beb7b2a2a6f4102783e
SSDEEP

1536:9ByyyefzqKpBOkRkDOdTSrETOfkhB2mCUNFDGMpjVrs2ryrd1vUQuq6:tfGiJgqfTLB2BUNFDTHs2qo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36229b90a9bfd49839117e344b2c5eea_JaffaCakes118

Files

36229b90a9bfd49839117e344b2c5eea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ac9cc89db22c92fc1e3828bfc71e6ab5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemWow64DirectoryW
UTRegister
NlsResetProcessLocale
GetConsoleTitleW
AddAtomA
GetFileSize
SetConsoleScreenBufferSize
GetProfileStringW
GlobalCompact
GetCurrencyFormatA
GetTickCount

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE