4c867f4d9d0f1bb093cc85c662391d0c_JaffaCakes118 | Triage

Sharing

General

Target

4c867f4d9d0f1bb093cc85c662391d0c_JaffaCakes118
Size

63KB
MD5

4c867f4d9d0f1bb093cc85c662391d0c
SHA1

00a6cf0af5aaa5598b3a43bb2fb98adf9bf11fc4
SHA256

62ad4a02f89d6185adb621d942d0584d8e1996e8730d3e549b30a5c3ee136f91
SHA512

5f3048779a5ea1c950f9cf1e8fc286c71d6b22bfc8f41494d13774b3653ece3425a2d328fa13b2f32864828c6ab41d8bae0554ee6a3afc30c56b1b35934000fa
SSDEEP

1536:2Dug9L1e+grSyjtyuXXr9izI8k6060mYQ649fVM+GjF:kySyBfXc0cn0bQLtM+GB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c867f4d9d0f1bb093cc85c662391d0c_JaffaCakes118

Files

4c867f4d9d0f1bb093cc85c662391d0c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

abc35e86b8e598e1f2783c7a605d40c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetAtomNameW
FreeLibraryAndExitThread
GetConsoleScreenBufferInfo
VirtualQueryEx
SetFilePointerEx
EnumTimeFormatsW
DeleteVolumeMountPointA
SetProcessWorkingSetSize
GetThreadPriority
MoveFileW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE