6927901935c192c37cb65fb6720d01bf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6927901935c192c37cb65fb6720d01bf_JaffaCakes118
Size

63KB
MD5

6927901935c192c37cb65fb6720d01bf
SHA1

c15d022479f87c0ffd205f67b6cdec8053813ea9
SHA256

8357b899ca294ca788c9ea05d06744feecf5df245657986c762f9872dadf2d61
SHA512

a6f4adc1b9fb552988ec0b91d39a3f802ceb38e4196d235a1371203f74afff382559fbab3e56760a271fc3e13dee0c16ccb87193f5fbcd10bbea1dd0c0910d15
SSDEEP

1536:xMUGVudT4tXW3Esz41Bc6Oxnpv6r2ZBVwikaEPhrPPc8:C8Utgz4wLyKZBwPPx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6927901935c192c37cb65fb6720d01bf_JaffaCakes118

Files

6927901935c192c37cb65fb6720d01bf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

60d6090df9a5e8270e03997c00f41454

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalDeleteAtom
lstrlenA
FindFirstFileExA
GetConsoleFontSize
GetSystemDefaultLangID
QueryActCtxW
WaitForMultipleObjectsEx
WaitForMultipleObjectsEx
GetProcessAffinityMask
WriteConsoleOutputA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE