63a8f8b62122c098da4142375463e161_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63a8f8b62122c098da4142375463e161_JaffaCakes118
Size

147KB
MD5

63a8f8b62122c098da4142375463e161
SHA1

ab1e01775ff64ea12560094c2007b644f7b5ba65
SHA256

52ca5695f363c30ec887b39886ad596bcb078b59d92ad46baa7f1a611338edfd
SHA512

afc82b4ab10e94b68def51e91180bce19aebce67beaae104b2f32c4448f64c044086075971a5006366c0a546eafd14471d14b6f114cca49eb905ce88376120b0
SSDEEP

3072:hE5+2ihfQr7aIZSJwn3//+ix2WjX+KXZF7KcTHqeVV+VfS:5Zh4rWIZSQ1jr7vKeVV6fS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63a8f8b62122c098da4142375463e161_JaffaCakes118

Files

63a8f8b62122c098da4142375463e161_JaffaCakes118
.exe windows:4 windows x86 arch:x86

89bd1dd08615721275f87856abadaf25

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateTapePartition
GetPrivateProfileStringW
GetConsoleFontInfo
UpdateResourceA
DefineDosDeviceW
GetLogicalDriveStringsW
GetCommTimeouts
RegisterConsoleOS2
WriteFileEx
SetVolumeLabelW
GetThreadTimes

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 133KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE