7833121637cc55b2794289bc85fb77bb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7833121637cc55b2794289bc85fb77bb_JaffaCakes118
Size

94KB
MD5

7833121637cc55b2794289bc85fb77bb
SHA1

2eea711e9379d0708bb41cbc83ba74afc8dc2310
SHA256

1004ba574b82b986893a4a3be8cae41940af619356564c7ad1809d74b4b52b08
SHA512

88e43913689fe0b80e56d65d78f2e8b37cff86beb002c77c2734ca87f36f53a941b070356f7968e16ed14a2184e5ad703e2cb4c7bdc81c3ae8ad5210c662cf18
SSDEEP

1536:NgKNMAIuDJ8ySkc2Wa1P0mwl1tJmXc8YaEJwZK4/83ZoMOALF6SSf:NdpIiJADaVq12XhZEXtpxLF6H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7833121637cc55b2794289bc85fb77bb_JaffaCakes118

Files

7833121637cc55b2794289bc85fb77bb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6f0406beb283e90de57174610c2f8793

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrencyFormatA
CancelDeviceWakeupRequest
GetCPInfoExW
CancelTimerQueueTimer
SetThreadUILanguage
GetTempPathW
GlobalUnfix
SetConsoleNlsMode
BaseCheckAppcompatCache
GetTempPathW
SetConsoleOS2OemFormat

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.krdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE