8493c896d7de2cd981a3963a6a9f8e48_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8493c896d7de2cd981a3963a6a9f8e48_JaffaCakes118
Size

212KB
MD5

8493c896d7de2cd981a3963a6a9f8e48
SHA1

db755baedab62e06a7fda0dfbe67503c73e27f77
SHA256

e1f03d08e8a254f3b52da093a2f268cfa89f3ef048fcd2519383d1cd01f9ff3e
SHA512

3e835e1f0415fff8ac91da4971bcc21c79a6db2aad40775351fb3c7f1b7de5f81375c0995baf9ef60ea5464407c3b001d792d7d75db22e9bf8993b2a1949a4a0
SSDEEP

3072:6Czu1l0u+cCWHYj0un0pOurjLm6rPfTs2ABmVV9jQXBvMZjsdxfjfouZl22fncYF:bu1miT+0plr/m6rPfTKAV+vSCfhTtVP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8493c896d7de2cd981a3963a6a9f8e48_JaffaCakes118

Files

8493c896d7de2cd981a3963a6a9f8e48_JaffaCakes118
.exe windows:4 windows x86 arch:x86

79140bbcda6bfb5983aec25b2507050f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
HeapSize
GetCommandLineW
PurgeComm
WriteConsoleOutputCharacterA
SetFilePointer
ResumeThread
SetPriorityClass
OpenWaitableTimerA
SetFilePointer
GetSystemWindowsDirectoryA
DeleteFileA
OpenSemaphoreA
WriteConsoleOutputA
HeapAlloc
BeginUpdateResourceA
GetPrivateProfileStringA
ReadConsoleInputA
GetConsoleWindow
GetExitCodeThread
VirtualAlloc
GetLocaleInfoA
ReadConsoleOutputCharacterA
IsValidCodePage
OpenEventA
EnumResourceTypesA
HeapFree
GetThreadPriorityBoost
HeapLock
GetProfileStringA
HeapSummary
GetCommandLineA
GetSystemDefaultUILanguage

ws2_32

socket

Sections

.itext
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 172KB - Virtual size: 834KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ