7487da22d17b88adab2321a953de82b1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7487da22d17b88adab2321a953de82b1_JaffaCakes118
Size

63KB
MD5

7487da22d17b88adab2321a953de82b1
SHA1

4ed9e24b94f598a9a686c2afba0af5dd570cece1
SHA256

50f66c5a97a467117e024b96cfaad6cb06e88039c1cb05321c036fb0654939fc
SHA512

b78e496276eedc1802e20a6ca07835e76a89ba4afae2fc90c7137057356cc6a51abb2486aabc67857a2fdd9bb010a24e1882dbc63fdaeb080173b4c446f1031f
SSDEEP

1536:gk7FQbAQm8iDgxAi8IgtUzQWcKaodNkkwpoOStaOBdAZO:gEgtODgxZ8I8UzQWldWpoNwOBdAZO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7487da22d17b88adab2321a953de82b1_JaffaCakes118

Files

7487da22d17b88adab2321a953de82b1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

735b79f8f634249627e8b3f0e1b86a7f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Process32First
GetProcessId
ValidateLCType
VirtualBufferExceptionHandler
WriteProfileSectionA
SetInformationJobObject
VerifyConsoleIoHandle
ScrollConsoleScreenBufferW
CopyFileA
Module32FirstW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE