8602045a357dcab93a731bbd364b3c1c_JaffaCakes118 | Triage

Sharing

General

Target

8602045a357dcab93a731bbd364b3c1c_JaffaCakes118
Size

59KB
MD5

8602045a357dcab93a731bbd364b3c1c
SHA1

2379136b127d26db2d96c431e073ad91de179c61
SHA256

21ebbccef9632e8613bb8236de16b30abe444ee3f854fbfe7edde725a825763d
SHA512

dd1a7c5ce9ff0309bdee1f766889b0693a48180e060cddcb51f276d996d30a0368d82f1c582c917f384a241cf32b1c425038c705df9fb600eb459ba50afeaadf
SSDEEP

768:FbCYCDKzwMwqlFy+7SsZPuFpbt9ETt/yZmc6O52YYGrFWa2w7TI:Fb+DKzwMfvV43bq64cPWaZT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8602045a357dcab93a731bbd364b3c1c_JaffaCakes118

Files

8602045a357dcab93a731bbd364b3c1c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9e30b86423bd72ee953931cf558c5b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnumPropsA
LoadMenuA
OemToCharW
EnumDesktopsW
GetTabbedTextExtentA
CreateAcceleratorTableA
CharNextW

kernel32

EnumDateFormatsExA
ExpungeConsoleCommandHistoryW
CreateFileMappingW
WriteConsoleW
ExpungeConsoleCommandHistoryW
SearchPathA
GetSystemDirectoryA
GetVersionExW
OpenWaitableTimerA
CreateJobObjectA
SetConsoleNumberOfCommandsW
EnumDateFormatsA
GetPrivateProfileSectionA
GetProfileSectionW
GetEnvironmentVariableA
WriteConsoleW
CreateHardLinkA
GetCurrentDirectoryA
SetCurrentDirectoryW
CreateDirectoryA
GetConsoleAliasExesLengthA
WriteProfileSectionA

msvcrt

_telli64
bsearch
memcmp
wcsftime
_unlock
_sopen
_strlwr
wcspbrk
atan2

Sections

.data
Size: 28KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tlss
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.share
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ