83e8db9460542cad7cd9ff1fb1666180_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

83e8db9460542cad7cd9ff1fb1666180_JaffaCakes118
Size

56KB
MD5

83e8db9460542cad7cd9ff1fb1666180
SHA1

9d119c057f58f703d5a1331fa23995cf60b973df
SHA256

30ee03cb82380f61b72d6832af9b9f97a9e096f7eeb756efaab84b66daa4c97c
SHA512

b06bd326af4b0273137f44e2ce72af73545b1a37c4a21a72e408f5aebdc8e5c3555f9f62c49ebbae63f3b814dbafc9dfc58e5926a9adc79d0322161375f0bc4c
SSDEEP

1536:TA3yLWvl28FaQRSuIbKY/mwBcSl5/cUSr3ohFXfixGFzZ0WNrTFlmcxSoBpGn++7:03y5WwjZzdodxvIle

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83e8db9460542cad7cd9ff1fb1666180_JaffaCakes118

Files

83e8db9460542cad7cd9ff1fb1666180_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f872466c09bd577bbe1aceda580008a6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
GetUserDefaultLangID
GetModuleFileNameA
GetDevicePowerState
GetUserGeoID
SetConsoleOS2OemFormat
BaseProcessInitPostImport
DnsHostnameToComputerNameW
ResetEvent
ExpungeConsoleCommandHistoryA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE