8875a5333e4f7896314ed5d7bc7e845f_JaffaCakes118 | Triage

Sharing

General

Target

8875a5333e4f7896314ed5d7bc7e845f_JaffaCakes118
Size

56KB
MD5

8875a5333e4f7896314ed5d7bc7e845f
SHA1

90ded428c9c30228adbf66abbc016f5411c490a7
SHA256

1dcb74180c2aa36b061d4b93d80d4d7f1871f9fdbff085dcc19899b11f898a3d
SHA512

a951dd9f0982e09ac8432edc7038d38011eb3298348e9c996c7115ec3549b39cade9ceab8a8c0555369a3c0d3178b07d53652755010025d2f7363dd2d7b95cb9
SSDEEP

1536:wSJzlLuOMx6JqVJOJ13P+TtsrmHmPHZlULfhjhR1a6wmK4zESqdfUcdkqm61m4cS:wSVmWh9GFbkrREHtxAT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8875a5333e4f7896314ed5d7bc7e845f_JaffaCakes118

Files

8875a5333e4f7896314ed5d7bc7e845f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3772b3ee8d3cdb03120b5bb7b48c65b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleOutputCharacterW
SetDefaultCommConfigW
VDMOperationStarted
lstrcatA
HeapQueryTagW
FindNextChangeNotification
CreateThread
GetMailslotInfo
DeleteFileW
CreateFileMappingW
CreateMutexW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE