83bfb3b7d2874b480bb9af185ec741c5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

83bfb3b7d2874b480bb9af185ec741c5_JaffaCakes118
Size

151KB
MD5

83bfb3b7d2874b480bb9af185ec741c5
SHA1

043fb66d6d80a2d494d727b391f5910eb1521f5d
SHA256

8ac14e037110f56154d06b2c6a3beb5ca393c24fb862291cf3df371c2ce6a592
SHA512

9c2e46b9fbc05b60474d01e493e72095a1fdb6bdaa10ba3d0d3d9a9436ad383705513937515b84664b161a2ce1c9d73640a3a34dc5cd188d9bf0e9ecbacd169b
SSDEEP

3072:KR3xN8RhWfgXIiMsybWMPFZeHQ1goimzxUCSgcp97DexpcKdEEibP+64:GN8R4gxTK32Q1vzx9SJpVICKdEBTi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83bfb3b7d2874b480bb9af185ec741c5_JaffaCakes118

Files

83bfb3b7d2874b480bb9af185ec741c5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b3af19442b1406874f41a7431295d4b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
SizeofResource
PulseEvent
CreateProcessA
LeaveCriticalSection
WideCharToMultiByte
GetUserDefaultLCID
TlsGetValue
GetEnvironmentStrings

msvcrt

_waccess
free
_beginthreadex

Sections

.text
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ