77d27ec1b4a0feb853fa334dfcd55bca_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77d27ec1b4a0feb853fa334dfcd55bca_JaffaCakes118
Size

220KB
MD5

77d27ec1b4a0feb853fa334dfcd55bca
SHA1

6fa3836f4e28bc55602ca727ef5b7a5865713bf0
SHA256

43ac2378c6328b96be4f17fd2d25fcbf90d85b84eb220701960b70ab4a48f2a5
SHA512

f7c50179a279b46b84c5260307804ac0175680225908c9533edff8d98f75d30d4c47bcb1f77eac34a66836a6afda9e0ffbc4ec08c15c048da1e4d4fb149cdf94
SSDEEP

6144:9IOsE4m6oB83/he0XVlMnBAbigRZQb4vHcbX:4ESAR0llMBOigHVHU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77d27ec1b4a0feb853fa334dfcd55bca_JaffaCakes118

Files

77d27ec1b4a0feb853fa334dfcd55bca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0cc339cff82ea927e7415ae8d8b09a40

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalCompact
GetProcessShutdownParameters
VirtualAlloc
GetWindowsDirectoryA
GetCurrentProcess
CreateSemaphoreA
EnumTimeFormatsA
FindNextVolumeMountPointA
IsBadCodePtr
HeapReAlloc
GetDateFormatA
OpenFileMappingA
MoveFileWithProgressA
GetConsoleOutputCP
UnlockFile
IsBadHugeWritePtr
FreeEnvironmentStringsA
AllocConsole
GlobalSize
GetStdHandle
WriteConsoleOutputA
ReadConsoleA
GlobalDeleteAtom
CancelTimerQueueTimer
GlobalUnfix
SetConsoleInputExeNameA
GetCalendarInfoA
OpenMutexA
GetFileAttributesExA
UpdateResourceA
GlobalGetAtomNameA
FindFirstFileExW

ws2_32

bind

Exports

Exports

CreateFmomfpla
Ausyqafxlfd
Fwbsvlambd
Olnoedbff
Jpgfvxy
InitCmwscws

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 180KB - Virtual size: 843KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ