486004d2f1591cab26207ca204c78c5e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

486004d2f1591cab26207ca204c78c5e_JaffaCakes118
Size

92KB
MD5

486004d2f1591cab26207ca204c78c5e
SHA1

81a7aed085f379976f77d3f88f7d968f933a4ce5
SHA256

5d5b48d43873da982f6ccbed47d42a42a6844df020d578904555928418d407f2
SHA512

41a37a935a79ecfc0a1e7b8d73b0427af1cefc7eaae282a5239cb30e1d086fae6fa16913039afa50163f677371b0da956890c60d55dc500e191ac3b3573366e9
SSDEEP

1536:HVHkifcyINFxpZG6VCCoF4N8NwcoW0vdE/Ve1:xkif1INqJ74N6wpS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
486004d2f1591cab26207ca204c78c5e_JaffaCakes118

Files

486004d2f1591cab26207ca204c78c5e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4a7f36f7431f3a70045dd8c1f5be9e18

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
CloseHandle
CreateJobObjectA
SetConsoleCP
MoveFileExA
GetCommConfig
ReleaseSemaphore
WritePrivateProfileStructA
MapViewOfFile
EnumLanguageGroupLocalesA
GetProfileStringA
SetConsoleCtrlHandler
VerSetConditionMask
SetConsoleOS2OemFormat
HeapSummary
GetPrivateProfileSectionNamesA
PulseEvent
GetCommandLineA
GetStartupInfoA
ExitProcess
GetUserDefaultLCID
GetNumberOfConsoleMouseButtons
ExpungeConsoleCommandHistoryA
GetConsoleCursorInfo
lstrcmpiA
SetTimerQueueTimer
SetProcessAffinityMask
RegisterConsoleVDM
ExpungeConsoleCommandHistoryA
RegisterConsoleOS2
SetConsoleTitleA
SetFileTime
OpenMutexA
GetConsoleFontSize

Sections

.itext
Size: 4KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WEIJUNLI
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA