73f934b60354b19362ea79696c1d8d2e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73f934b60354b19362ea79696c1d8d2e_JaffaCakes118
Size

42KB
MD5

73f934b60354b19362ea79696c1d8d2e
SHA1

61f80a288e77fc5d7d9a22ce12891c323b16765c
SHA256

e41e59217443a3e54179d3e13d5dad0781677d934d2530b5e224e302136f3c4a
SHA512

597d4c8438eb0c9edaa40bd33b16aa83c9bd016f1f741a45a14678e73fc9767b57a769185776735114f5aedafe49a0f3d941d889254c9455fddd6f2fd8d13656
SSDEEP

768:VsSjQSv0SpyVmjbh60rPKcRL1/IkBpE6G68BH99zrTlwGTfEYiNyG:Xv0SHjY0PKcZ1AkpE6GlF9ZrTlwGbEYU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73f934b60354b19362ea79696c1d8d2e_JaffaCakes118

Files

73f934b60354b19362ea79696c1d8d2e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ce7b9d0fd9ab894d94379eb66595d98d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetCommandLineA
ExitProcess
GetStartupInfoA
ChangeTimerQueueTimer
WaitForSingleObject
Heap32ListFirst
LocalFileTimeToFileTime
GetDefaultCommConfigW
FormatMessageW
FindFirstFileW
WaitCommEvent
OutputDebugStringA
SetHandleInformation
SetConsoleMaximumWindowSize
GetTapePosition
GetNumberOfConsoleMouseButtons
GetLongPathNameW
RegisterWaitForSingleObject
SetThreadPriority
GetModuleFileNameA
VirtualQuery
AddConsoleAliasW
HeapAlloc
CreateToolhelp32Snapshot
SetLocalTime
Module32NextW
UpdateResourceW
SetNamedPipeHandleState
GetTempFileNameW
VDMConsoleOperation
SetFileAttributesA
GetFileSizeEx
GetPrivateProfileIntA
ReadDirectoryChangesW
WriteProfileSectionW
GetComputerNameExA
GetConsoleInputWaitHandle
TerminateThread

Sections

code
Size: 4KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

data
Size: 34KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 2KB - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 552B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ