4db43718f9350881e26b88ff010ad6b5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4db43718f9350881e26b88ff010ad6b5_JaffaCakes118
Size

66KB
MD5

4db43718f9350881e26b88ff010ad6b5
SHA1

dcba43ae0196f96d88aab18cc1cd70d75e725a76
SHA256

110616df651214cab73ef03fec60461e7ea62f1996428cc7edc285495478a6fd
SHA512

cfebd27379bdb748c681213d5256ef2b41718512563542d4a8a8ac0b0431ac5efc73ea47d82332cb3091aedaa8c8c43a5fae938119db930132a06f95dfe92249
SSDEEP

768:eFwJxfUB7hdw5Vj237TaZYhvm9Kv4BKlypP9Lxdf5KIiZorh/cK1XDUF16kfiEMr:SStV2CqBvJcP9Lxa6ciifiEMHEeSHMow

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4db43718f9350881e26b88ff010ad6b5_JaffaCakes118

Files

4db43718f9350881e26b88ff010ad6b5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8dd26f75551cad7cd7894187bc6d1921

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RegisterWaitForInputIdle
lstrcmpW
CreateHardLinkW
GetExitCodeProcess
SetTapeParameters
NlsResetProcessLocale
FindResourceW
GetConsoleAliasExesW
GetLongPathNameW
HeapUnlock
FindFirstFileExW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE