734de200a12e6f47060eb02f3f6c28c7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

734de200a12e6f47060eb02f3f6c28c7_JaffaCakes118
Size

119KB
MD5

734de200a12e6f47060eb02f3f6c28c7
SHA1

4cee3eb61fc3bd32b0f7da3d673dbd2a5686a8a8
SHA256

b629ad26c9099a009111a8c9415fec34e90bf0fe8fd3c5d7ca8d21909b30bf4d
SHA512

2cd8a767002c4b30375d735629bc491311eb236bee2fdb953a49a1e95c5ce24a3e9a7aa1507bea234b20220072abe758344d9200fd45ac0b9f75917b59a7c8f6
SSDEEP

1536:Hgc/Qv+paDsxm50xIboxr+bPWdLIoaH6WDIvDVomAf6hsJoy0ThspO+ymDeUnPTc:34v+padY+7yLq6qIvDpTUxyETU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
734de200a12e6f47060eb02f3f6c28c7_JaffaCakes118

Files

734de200a12e6f47060eb02f3f6c28c7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4b7f0c7eb748c3f3fb279eb4498523e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
InitializeCriticalSection
ClearCommError
WriteConsoleOutputW
MapViewOfFileEx
TryEnterCriticalSection
GetSystemDefaultUILanguage
RequestWakeupLatency
GetNamedPipeInfo
SetStdHandle
FillConsoleOutputCharacterA
CreateProcessW
EnumSystemCodePagesA
SetVolumeLabelW
GetThreadSelectorEntry
GlobalFree
FlushConsoleInputBuffer
GetFirmwareEnvironmentVariableW
IsSystemResumeAutomatic
SetFileValidData
ReadProcessMemory
GetTapeStatus
IsBadStringPtrW
GetEnvironmentVariableW
SetSystemPowerState
CreateFileMappingW
lstrcpynW
LocalUnlock
EnumResourceTypesW
FindFirstChangeNotificationW
EndUpdateResourceW
GetThreadPriority
HeapReAlloc
InterlockedExchange
FileTimeToDosDateTime
WriteProfileSectionA

Exports

Exports

UsDem
UsFn
UsFuub
UsQdbo
UsVwn

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE