470c19e21fd3bb8527046f34e12ee473_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

470c19e21fd3bb8527046f34e12ee473_JaffaCakes118
Size

76KB
MD5

470c19e21fd3bb8527046f34e12ee473
SHA1

256a43fcc2c860779bcc79562ad5d986df55ec03
SHA256

37ae340bf4de41f484a72fcfe71f3d3dd0fa1c40f965e2da69596d77c1839d29
SHA512

f9636e918bdb01ad00f858e579396aaab5364557c3465099d5647c4cbfc959d4b360eabb770cc2a208101b30f8a0798eb8cf182ceb2706f623b33ceb170f16ee
SSDEEP

1536:4rrrr7GTYVyFUF2Mp/Wqd/41LzfuIwpJ35k+e+nVBeLDR3pjVrs2ryrd1vUQuq6:OGcPxd906I4J3a5+jeLD1Hs2qo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
470c19e21fd3bb8527046f34e12ee473_JaffaCakes118

Files

470c19e21fd3bb8527046f34e12ee473_JaffaCakes118
.exe windows:4 windows x86 arch:x86

06f3285f0d11546e8a3562603305296e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryInformationJobObject
GetNumberFormatW
InterlockedPushEntrySList
GlobalWire
SetConsoleInputExeNameW
HeapCreate
GetConsoleAliasExesLengthA
EscapeCommFunction
BuildCommDCBW
GetConsoleKeyboardLayoutNameW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE