4dbaab310803784836ae7a2e1bf3f8fb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4dbaab310803784836ae7a2e1bf3f8fb_JaffaCakes118
Size

183KB
MD5

4dbaab310803784836ae7a2e1bf3f8fb
SHA1

aa6b9cfb614fb0c30eb6e18117d8e0cd24ad3fe3
SHA256

7eec9ecfea5a10e6ae749220a574b87de2d71cb7640be205ffb0ee581fa241a9
SHA512

b855315ec4de19ce71ece45f6c98f47d208427ed1a50ab0b4b43206f107149fbcce18d9c794d542a31071254105cfc00b0031954edb871999231daff816e6846
SSDEEP

3072:SZh67HYBVhYwEoIv4DTQQuraOKNHrayQYf1pCEa+omP6sKiVDxQEj5XBCkUx:IhKYBTYwEoIv4DTrdHaTlHJiVVr5XBCl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4dbaab310803784836ae7a2e1bf3f8fb_JaffaCakes118

Files

4dbaab310803784836ae7a2e1bf3f8fb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6c6de0a7ce0a7ef02b1fb80afc6efc1b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleOutputAttribute
GetSystemInfo
IsBadStringPtrA
UTRegister
LoadLibraryExA
SetVolumeMountPointA
GenerateConsoleCtrlEvent
LoadResource
GetCurrentConsoleFont
Heap32ListFirst
ExitThread

user32

GetWindowRect
CharPrevExA
CharToOemBuffA
Win32PoolAllocationStats

Sections

.code
Size: 9KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 170KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pack32
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ