81c51fd1bb2720c7d66df38fa5b9d30d_JaffaCakes118 | Triage

Sharing

General

Target

81c51fd1bb2720c7d66df38fa5b9d30d_JaffaCakes118
Size

114KB
MD5

81c51fd1bb2720c7d66df38fa5b9d30d
SHA1

7a9907aa55684cc9d612d93882c2b87a90794d98
SHA256

d2e8452eff8690a7c8ee3dddf246caed981261ad822ea539e76713341fae74c8
SHA512

6b8f2f80ac6170331579fe30334fee6d79116e905607625c8d07d38a3bc43c9751f3d525d76849ba5796c27197309510c4bf58e19511a8e477cb64f700a8497e
SSDEEP

3072:q2YhtA+DJWHK5f32tXK/atnhaN6aKC1az4tkeQB4UtM5FfaRSGZ:qnbPJ1fA6/ad2/1w4yeQB4Ut02fZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
81c51fd1bb2720c7d66df38fa5b9d30d_JaffaCakes118

Files

81c51fd1bb2720c7d66df38fa5b9d30d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0e6f4a0a575d8f8ff994ffe2f522cf0d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

NlsGetCacheUpdateCount
GetFileTime
AreFileApisANSI
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

.text
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE