3c946d9ebdfc5270f5b458c7a79f2025_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c946d9ebdfc5270f5b458c7a79f2025_JaffaCakes118
Size

159KB
MD5

3c946d9ebdfc5270f5b458c7a79f2025
SHA1

d93b2a5becfcf709309476f1f80d9078a734ce18
SHA256

fe202117318f5d19711176b3c73eab356f697d9cc26f22c0a6d313fde5768d56
SHA512

2f7f7fc18d859283b5d5ac67c826b7ca99d9447c97e69b27890e7b9b1386984c19eb796901dcdd4126682a0f363f0352add150cdb236d5863ec842a086f44cc2
SSDEEP

3072:Sn27d5+1d1wpkJVmJhx+34OeorowS7FAyi4seCnJr1Q:g2Z4+knWhctZMwSK14s1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c946d9ebdfc5270f5b458c7a79f2025_JaffaCakes118

Files

3c946d9ebdfc5270f5b458c7a79f2025_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3fe314019905571e7b9f6b9dee88cc94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetMailslotInfo
GetProcAddress
LoadLibraryExA
FillConsoleOutputCharacterA
FindFirstFileW

Sections

.text
Size: 156KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 72B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 940B

IMAGE_SCN_MEM_READ