887f6f6efb43d5ca4fb779ab18a57461_JaffaCakes118 | Triage

Sharing

General

Target

887f6f6efb43d5ca4fb779ab18a57461_JaffaCakes118
Size

171KB
MD5

887f6f6efb43d5ca4fb779ab18a57461
SHA1

a9b416398f89b1e8c04fb5577c6bb22ef1335ff9
SHA256

bb2dcfc2a9edd0a62d91e11518d1f6ccaafa65feb9cdc5f98ba09c89ac3cd63d
SHA512

c6b7bee61a1f04018f787b5569c0782023dc3f1d2e0fa0706be9b2be5ce659d20881cb8a0dce20161bb9ddd6e88ecc28375e987415a3bf6ac749bfc4b1094bf3
SSDEEP

3072:aIw5hKfjW326tqcwGhNqboIrH0QvfudHMSd4LLAjvQNnDdUtbWqk:aFRDkWN3I1fuirLLAjYNnDdiu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
887f6f6efb43d5ca4fb779ab18a57461_JaffaCakes118

Files

887f6f6efb43d5ca4fb779ab18a57461_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ad9c28108278fbf387ddf2bf66453bb3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
PeekConsoleInputW
GetCurrencyFormatW
GetConsoleSelectionInfo
VerifyVersionInfoA
GetFileAttributesW
GetCurrencyFormatW
LCMapStringW
LZClose
TerminateThread
GetThreadSelectorEntry

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 157KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE