4514cc7b94e847d22b4fcdd79d9fd556_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4514cc7b94e847d22b4fcdd79d9fd556_JaffaCakes118
Size

42KB
MD5

4514cc7b94e847d22b4fcdd79d9fd556
SHA1

e4199962dbd5e99606cbd025caef63a5f906bda3
SHA256

32c6c37815692b853c1852e8135cada71dd8ba514f467213a5a8b017cd4d7cbf
SHA512

e72dc844cc644a11104d0d3d1980039061567ccdf0e3613c6a4cc1bf1146e39fa418e7d8c0104207eb34a7918578c9407afd0e292c8060bbdb769486dabdaba8
SSDEEP

768:+E3cez/fhoruUZcn9uJ7AVatQgcgw8mvLoAdzQ8IgIOjO:+nejporzZy0DPV1ZsQ8IgLi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4514cc7b94e847d22b4fcdd79d9fd556_JaffaCakes118

Files

4514cc7b94e847d22b4fcdd79d9fd556_JaffaCakes118
.exe windows:4 windows x86 arch:x86

adc2b59e67a1a9895c2ab96d81b16624

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetCommandLineA
ExitProcess
GetStartupInfoA
OpenFileMappingA
FillConsoleOutputAttribute
FlushConsoleInputBuffer
VDMConsoleOperation
TransmitCommChar
CancelWaitableTimer
HeapAlloc
GetEnvironmentStringsW
GetSystemDefaultLCID
EnumSystemLocalesW
GetTickCount
Module32Next
GetLongPathNameA
CreateJobObjectW
EnumSystemLanguageGroupsW
GetPrivateProfileStructW
WriteConsoleOutputCharacterA
LocalLock
ReadConsoleW
GetModuleFileNameA
GetShortPathNameA
ExpandEnvironmentStringsA
Process32NextW
RequestWakeupLatency
GetConsoleDisplayMode
SetLocaleInfoA
GetCPInfo
SetMessageWaitingIndicator
CommConfigDialogW
VDMOperationStarted
ClearCommError
GetConsoleCursorMode
DeleteAtom
ReadFileScatter
lstrcmpW

Sections

code
Size: 4KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

data
Size: 34KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ