767ecfbe7f6757c1509a0b073992f2bd_JaffaCakes118 | Triage

Sharing

General

Target

767ecfbe7f6757c1509a0b073992f2bd_JaffaCakes118
Size

83KB
MD5

767ecfbe7f6757c1509a0b073992f2bd
SHA1

0c61fdaa7e70cd0d6534b539db0918c71926431d
SHA256

132d8aa11f280e6be5bb0b367046e3765b8fb74b1642b2147352c469aff6e3fd
SHA512

cdd94a3e3325e0e6f2ce3ea53bff62c457e49b92a5ad627fe2a974b52c42ea21473b1424789ed9cd8399292c6657267c4f279b420f0beeaccac4cfa6d485f44f
SSDEEP

1536:EdlrfMtHvaN8NRoYNvUNRWBgdXFWgohpjVrs2ryrd1vUQuqwcizSkX:EPM6a7YRWeQhHs2quciu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
767ecfbe7f6757c1509a0b073992f2bd_JaffaCakes118

Files

767ecfbe7f6757c1509a0b073992f2bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ec90e00a1fe7bdc56aa10e673d4dc0a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetMailslotInfo
EnumSystemCodePagesA
SetVolumeMountPointA
lstrcmpiA
GetLogicalDriveStringsA
CancelIo
SetLocalPrimaryComputerNameW
InterlockedFlushSList
lstrcatW
SetDefaultCommConfigW
Module32NextW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE