43e1f307c7c72b817e279ec6d2ad333d_JaffaCakes118 | Triage

Sharing

General

Target

43e1f307c7c72b817e279ec6d2ad333d_JaffaCakes118
Size

182KB
MD5

43e1f307c7c72b817e279ec6d2ad333d
SHA1

4f035fe62fe0c91df22f71c583c83dbd3f4f499e
SHA256

0ce76c4f570501039a68b7daa764b1dcee5dc5300af895c7e2f8cb48a41baff6
SHA512

6bcb363b2d4d3e2a52788949bd9a8dee4f9a311f516211c3f9cf5843dc48d3bc629f2188032fa2d8056ac91a89a6b482c13f247fb356069c6240a7169b33eb5f
SSDEEP

3072:8YJ8zrmpljBNUdh+nLEI9t/bpuM/l0/BTxzV9SrQq4CW6j2pVgv7mw4XeOv3x7qy:8YSz6H1YQnDt/b0Md0/XkQq4CWzDgv7P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43e1f307c7c72b817e279ec6d2ad333d_JaffaCakes118

Files

43e1f307c7c72b817e279ec6d2ad333d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a13dd72f60ed1f0a06e086d517010a29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleTitleA
IsProcessorFeaturePresent
GetLocalTime
SetFileAttributesW
EnumDateFormatsW
VirtualQueryEx
lstrcatW
InterlockedExchangeAdd
CreateWaitableTimerA
SetConsoleOutputCP
DefineDosDeviceA
GetConsoleAliasesLengthA

user32

RegisterClassW
GetClientRect
GetScrollBarInfo
DdeNameService
SetCursorContents
DestroyIcon
SetClassWord
DragObject
WINNLSEnableIME

Sections

CODE
Size: 9KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 170KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack32
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ