5db7de1d4f1f76c4315eb44ae031a6af_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5db7de1d4f1f76c4315eb44ae031a6af_JaffaCakes118
Size

32KB
MD5

5db7de1d4f1f76c4315eb44ae031a6af
SHA1

606b7789ee183287343360885ed55d6b065b2468
SHA256

f36593e86db69f897facb897fe3d05452bb88c765c9e6b588d6a5ed5909c0057
SHA512

44c1170f12a20381d4cb308967740d5b70682703b791fb23fd535e66011360d103bed7bcac3b341ed2d99316e51132e23849582b295fc192e5ba2d6bd20550ee
SSDEEP

768:x7c3XLzZtNFtGB22x1O9qjAkZJvspkIH3:xkXL7tGBXfO4pMuIH3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5db7de1d4f1f76c4315eb44ae031a6af_JaffaCakes118

Files

5db7de1d4f1f76c4315eb44ae031a6af_JaffaCakes118
.exe windows:5 windows x86 arch:x86

62bcbd9ff65e61557a3732cfca9e882a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
SetConsoleCP
CreateDirectoryW
ReadConsoleOutputCharacterA
CreateWaitableTimerA
WriteFile
HeapDestroy
DuplicateConsoleHandle
FindFirstVolumeW
TlsFree
GetDateFormatA
EndUpdateResourceW
GetPrivateProfileStringA
SetVolumeMountPointA
LockFile
EnumResourceNamesA
WriteConsoleInputVDMA
SetVDMCurrentDirectories
ExitProcess
DosDateTimeToFileTime
QueryPerformanceFrequency
GetProfileStringW
SwitchToThread
GetFullPathNameA
ReleaseSemaphore
SleepEx
GetLocalTime
ConvertThreadToFiber
WaitCommEvent
RemoveDirectoryW
GetLongPathNameA
HeapUnlock
CreateFileMappingW
RequestWakeupLatency
EnumSystemLanguageGroupsW
GetCommMask

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 14KB - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE