897ffe0351913e59fa33891957158793_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

897ffe0351913e59fa33891957158793_JaffaCakes118
Size

4KB
MD5

897ffe0351913e59fa33891957158793
SHA1

9c34c849567ae4753f11e5ea9095e677aee36f8a
SHA256

12ad9477c2a710be8439f1326407d02979ed7a81918acd997398e4a156388114
SHA512

74e132f57a54259a8f8c0d99951257b1357fd7518bef75965e35628ead714c9c6995b3d39e55abb79585f0902bc0ee00ead526abd82c40f4c1e73fd002960806

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
897ffe0351913e59fa33891957158793_JaffaCakes118

Files

897ffe0351913e59fa33891957158793_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1deed2f290b0bc959c6f9e6a646171a6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FillConsoleOutputCharacterA
BuildCommDCBAndTimeoutsA
GetFullPathNameA
GetConsoleAliasA

user32

IsDialogMessageA
PostMessageW
LoadStringA
CreateWindowStationA

gdi32

StartDocA
GetICMProfileA
GetCharABCWidthsA
GetTextExtentExPointA

Sections

.tls
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 512B - Virtual size: 422B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.��
Size: 512B - Virtual size: 475B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ