3e58b5bd81b3e90dec4e3321e0d9c148_JaffaCakes118 | Triage

Sharing

General

Target

3e58b5bd81b3e90dec4e3321e0d9c148_JaffaCakes118
Size

96KB
MD5

3e58b5bd81b3e90dec4e3321e0d9c148
SHA1

3a25f7b64486e5ff88c5f9fb50f0b23f99372f27
SHA256

abc766bfdc12fd23b384e9d635e91dc1b9dbad40652aed188c849d77eabddf9d
SHA512

62902feb062b569be77bd59e2c3b32738b50d7a2b19d9a2afef186c41fa9d51a49de780f84281cc8bf260fae0d0dd4dcf65c3b1901f110b16b87c7366acf1a6e
SSDEEP

1536:GDl2VxIguhNwUwfazT9/0YqKafA0Rqzf1n7TxJg8FttlE4lWp4i9:GR2VxIguwUwCzT9faRcHgune4Ap

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e58b5bd81b3e90dec4e3321e0d9c148_JaffaCakes118

Files

3e58b5bd81b3e90dec4e3321e0d9c148_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de38d416811aa418689be2dba2af91ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
FlushInstructionCache
ExpandEnvironmentStringsA
SetLocalTime
SetComputerNameExA
GetStdHandle
GetStartupInfoA
ExitProcess

Sections

.text
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WEIJUNLI
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ