8a1455b1193c9b474bffb76e9e5212b4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8a1455b1193c9b474bffb76e9e5212b4_JaffaCakes118
Size

76KB
MD5

8a1455b1193c9b474bffb76e9e5212b4
SHA1

f64ab93f4081bea856749703d50930d35c7d4428
SHA256

aa6faa8604541f6250ce45fa7420dcf64ff63d7a37e118af01063c434abf5fd4
SHA512

27849642a39876905afb12f8f3670924f0a6c5cd795087c5f45cf0b7f715556e258daf81cf6386c741d28f0c179d40d4b3b4768064db000aa83eb9ca9013dcec
SSDEEP

1536:j89u802m2fLy4wvu8LcLV3VRw/Zzq6on4AVgrpjVrs2ryrd1vUQuq6:j89uye4wmEmVRw/Zzq6on4AVCHs2qo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a1455b1193c9b474bffb76e9e5212b4_JaffaCakes118

Files

8a1455b1193c9b474bffb76e9e5212b4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2edf23f01de4ee5c2d553fbd9dffe711

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenEventA
GetCommTimeouts
UnregisterWaitEx
CreateConsoleScreenBuffer
SetCurrentDirectoryW
PeekNamedPipe
lstrcpyA
SystemTimeToTzSpecificLocalTime
Module32First
SetConsoleMode
lstrcmpi

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE