8901c25af20a3f1ae31b5f6f1a834b73_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8901c25af20a3f1ae31b5f6f1a834b73_JaffaCakes118
Size

63KB
MD5

8901c25af20a3f1ae31b5f6f1a834b73
SHA1

d73f156e10417a9a1a53752825ebb3bc289d89ae
SHA256

aaad43306c092d4b9d3f165681e821490eb65eef30270d8c579e8d89ef2a1290
SHA512

752e20686ecc2888643fdd5256aa9b3e9919df1deca1aca19676279625a6b60e243c58499b5b4dfbf96f790c5f1dffd6def3341ada25cc59901480d76fe02773
SSDEEP

1536:4HHatQKbiDCIobMdsr5QIRXuRHVPriWvC4Skq2Vj1c+ILnSX:H2D6RXuRtriuVm2Lcli

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8901c25af20a3f1ae31b5f6f1a834b73_JaffaCakes118

Files

8901c25af20a3f1ae31b5f6f1a834b73_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f01dd35c60f15c8879c595de6b098543

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceExW
SetConsoleMenuClose
CompareStringA
HeapUsage
GetConsoleCommandHistoryLengthA
GetConsoleAliasExesW
GetConsoleKeyboardLayoutNameW
HeapQueryInformation
GetConsoleAliasesA
LocalFileTimeToFileTime

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE