69f0c2dacde4e52b1c4d5067a0a2e7b2_JaffaCakes118 | Triage

Sharing

General

Target

69f0c2dacde4e52b1c4d5067a0a2e7b2_JaffaCakes118
Size

492KB
MD5

69f0c2dacde4e52b1c4d5067a0a2e7b2
SHA1

8aecf310e5f95727932699bc5075e86cb23d0e0a
SHA256

7fdf685ce2e83c8a0bd8dc95a239d407bb936d3bfd242b4f79b8237f675919df
SHA512

bb84a4f01f39bccaebea49f364bfea5db3c9a80ea777bd344d6d806a3e63520300d5828643fd0b811f2ba4659864abf3b992d2ffddf1dd9f2462d4df907edbff
SSDEEP

12288:s4L9r548rpptnOhuQ0aDL1Y9bHjY8/EJqTHGXr5:s4LR54mtOG9jjY8/lTHC5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69f0c2dacde4e52b1c4d5067a0a2e7b2_JaffaCakes118

Files

69f0c2dacde4e52b1c4d5067a0a2e7b2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5f6f62b703097d320f96a42aabad93d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fprintf
_strcmpi
strchr
_wsplitpath
_waccess
time
_getcwd
_pctype

kernel32

GetCurrentThreadId
GetCommandLineA
ExitProcess
LoadLibraryA
GetVersion
GetTickCount
GetLastError
GetModuleHandleA
GetSystemTimeAsFileTime
GetModuleFileNameA
SetCommState
MapViewOfFile
GetEnvironmentVariableA
FatalAppExitW

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ