697ff575a42275b434a090808fe840bb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

697ff575a42275b434a090808fe840bb_JaffaCakes118
Size

66KB
MD5

697ff575a42275b434a090808fe840bb
SHA1

e9b2c25db76bd83301d5dbe215dd330fa9287b05
SHA256

c4266a86a933e5762e0668aa0f62441ec88a96bf6e2cdfc895e52102685c50e5
SHA512

965948b31bb5f7ae6d2c4fc9b3fbbad7a4f67fbf5221cd9e33329cc9686a80033f56b2d9c552e09f829baf76cf07ce3e6aaf2aa30429829e84e370fdb8cc0fd6
SSDEEP

1536:ype9DHFpBIQ21lJG6TpIcvIrhkRrOfHJoWgttzbKG0YYhPQPIG55hiF2:Q4HFg3l0IpUyRafHsbK/YYwIG55hI2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
697ff575a42275b434a090808fe840bb_JaffaCakes118

Files

697ff575a42275b434a090808fe840bb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f9599598c212d45067622a0a0e4c7ce7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
SetFileValidData
FormatMessageW
OpenSemaphoreW
GlobalUnfix
GetAtomNameW
GetDriveTypeA
GetCommState
TerminateThread
TransmitCommChar
IsDBCSLeadByte
GetSystemDefaultUILanguage

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE