4df0f72809c9b2a73981a3b9cd9d945b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4df0f72809c9b2a73981a3b9cd9d945b_JaffaCakes118
Size

212KB
MD5

4df0f72809c9b2a73981a3b9cd9d945b
SHA1

5976791fa69c5263ecff28d16e91a16afc3b83f0
SHA256

ddccc8ce0528aa203fc8137e894f59f918226f2065c6e314fac899475718bb2c
SHA512

68f0b1ba36cea0cbcbd695a61e3a59858623d4a464ddb436f62e9987f8ab96466ef69e06decf3d16e59c794190ddbee2635ead84e893b6142cb3957604dfb98e
SSDEEP

6144:bKF6ju9G0VvQlOfD4H942XwK4ulNekOf4by:WXAiQlOri4d72N4f4W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4df0f72809c9b2a73981a3b9cd9d945b_JaffaCakes118

Files

4df0f72809c9b2a73981a3b9cd9d945b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6fb66ff2db4e1d8874d33a9dd9c5c5f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeThread
SetConsoleLocalEUDC
GetCurrentDirectoryA
CreateMutexA
GetCommandLineW
SizeofResource
ExpungeConsoleCommandHistoryA
GetVolumePathNameA
SetFilePointer
GetProcessHandleCount
HeapAlloc
GetCommandLineA
GetDiskFreeSpaceExA
FormatMessageA
WriteProfileStringA
GetUserDefaultLCID
InterlockedExchange
FreeLibrary
VirtualAlloc
GetDriveTypeA
HeapUnlock
HeapDestroy
GetProfileIntA
HeapFree
ReadConsoleOutputCharacterA
ResetEvent
SetEvent
OpenJobObjectA
EnumSystemLanguageGroupsA

ws2_32

recv

Sections

.itext
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 184KB - Virtual size: 842KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ