65b553164df6c3daaa517b5b045fc3aa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65b553164df6c3daaa517b5b045fc3aa_JaffaCakes118
Size

76KB
MD5

65b553164df6c3daaa517b5b045fc3aa
SHA1

7eec3dde6c3310a5ac0b368c8d74f1b78160c881
SHA256

0cafce0065efaf2e527055c9fe5f25839b1bdf5017a59fb197390a5c580b086d
SHA512

f5930b7793baa59af672fe6be2e33fd9c08a41060d1db38451c6fe405b998a64558005c38c98e56d42ac900c42d9328ea324cbdb623f05ac061b4247c34c3976
SSDEEP

1536:Z43XIIlv71c6b2Lu5K1WvGqy1ocuGmFS/K+IoUE/ZjEErxTWDTMqhGKYIZTET8x:Z2XHv3cQK1WvGwcuGnHZhjBkMqhGKZTF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65b553164df6c3daaa517b5b045fc3aa_JaffaCakes118

Files

65b553164df6c3daaa517b5b045fc3aa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0a5f418710494b49eede660c14f9fca0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ScrollConsoleScreenBufferA
LocalFlags
CreateVirtualBuffer
lstrcatA
GetDefaultSortkeySize
SetConsoleMenuClose
SetEnvironmentVariableW
SetConsoleTitleW
CloseProfileUserMapping
CloseProfileUserMapping

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE