4944166dd251c4ae310ea1be2c04564e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4944166dd251c4ae310ea1be2c04564e_JaffaCakes118
Size

35KB
MD5

4944166dd251c4ae310ea1be2c04564e
SHA1

b31f37bfc6a1e961cb89b88c96139d59d400f643
SHA256

19398dbd1bca3ff490d5a770f008fb8cf11d73ec217d68816da582e5271b19b3
SHA512

5b054e6d25c9a6c406798081813d3556da2054df506f6103571117a2bce5e767a113fea531c9c1d6bc5e5fbf41c905cc8e57e654c4c89ce0a5de8fbe3f451fc8
SSDEEP

768:WDXYJNzcMywlsKJ8vE3qkr89s4IZuCr3HeLYCwQ:oYRyFW8vE3vQW97yRwQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4944166dd251c4ae310ea1be2c04564e_JaffaCakes118

Files

4944166dd251c4ae310ea1be2c04564e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b04e68541273855d90914b1cca08bb29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetComputerNameExA
GetConsoleAliasesLengthA
SetFilePointer
GlobalDeleteAtom
CopyFileExA
GetLargestConsoleWindowSize
CancelIo
SetSystemPowerState
GlobalUnlock
SetSystemTimeAdjustment
RegisterWaitForSingleObjectEx
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

data
Size: 4KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

text
Size: 27KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 1KB - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ