3989502eb616a6d35bd86507d911c955_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3989502eb616a6d35bd86507d911c955_JaffaCakes118
Size

71KB
MD5

3989502eb616a6d35bd86507d911c955
SHA1

d76cfff9f70794931c251e03bb3898b3d95103d3
SHA256

88a0f6195fd2c8d842962d3369eb4d4b7644b0a5a6e270945efc50c03f309f53
SHA512

c0cb39938480ff2566ed51b39e6ee40dd3968dc791e093318b036ca05e1a0ff74c1cb0727adc8d65c9f466f16fa0349c8c040b0e8227436d872346aff74a0135
SSDEEP

1536:W+jK9CAOR94SrZZYlEzxdjRSbwtC8zfvHS5FfC5APC11m:W+jK9jOASUonjRSbfkfvy7a5A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3989502eb616a6d35bd86507d911c955_JaffaCakes118

Files

3989502eb616a6d35bd86507d911c955_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8189bb5b8550ed2faec79c3b8e2bba27

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CheckNameLegalDOS8Dot3A
CheckRemoteDebuggerPresent
SetupComm
GetThreadContext
OpenEventA
RaiseException
GetConsoleAliasExesW
LoadLibraryW
CreateWaitableTimerW
DnsHostnameToComputerNameW
GetConsoleAliasExesW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE