706a5c4a257d513f7df1b243fda18930_JaffaCakes118 | Triage

Sharing

General

Target

706a5c4a257d513f7df1b243fda18930_JaffaCakes118
Size

62KB
MD5

706a5c4a257d513f7df1b243fda18930
SHA1

7858794406f024842edec8b48e903545048b397c
SHA256

86988821627e00c89711a40af04628b9f5077e131415d780d0c03012ff56cdc9
SHA512

e5de470b3f5d24428e69cb41d4963d5dda2fcb50cbd02e04b343b120269c2d62c7a664562e32a04c876ee7f5b23810dcdbf475370349ea62bae90a1e5a623ddd
SSDEEP

1536:fiOI1R8KIBnLqkUIETI3sewX1aJLbguONuV8q8fOX:xI/baLqkaIcewlad78uyqea

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
706a5c4a257d513f7df1b243fda18930_JaffaCakes118

Files

706a5c4a257d513f7df1b243fda18930_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f26223f0bfce0ef7f3b51a2dffe539a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DelayLoadFailureHook
FatalExit
IsProcessInJob
_llseek
FindFirstVolumeA
HeapExtend
SizeofResource
RequestDeviceWakeup
GetFullPathNameA
GetConsoleSelectionInfo
SetConsoleCtrlHandler
VirtualAllocEx

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE