947a38e67e96dced9b1ed62adaa59e1e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

947a38e67e96dced9b1ed62adaa59e1e_JaffaCakes118
Size

76KB
MD5

947a38e67e96dced9b1ed62adaa59e1e
SHA1

febccf4e824ad4fe271d249d4704448de8518b5e
SHA256

6c935fd9d1e0f6c71fcf8b9463e119e411dfc6f918872ed36b7acc7ca4199547
SHA512

73fe0ee9de5968c6cf0e8531e5ad61a10b3f02183ed1092c69efe246b1a9f6bfd81b2d42123fc34567fa64c71e0a4a4f4e3d11de79e031beca9903ceb64dd346
SSDEEP

1536:MDsJtp2hAgJTKPzY7GrycgCe4UoOgY1TbF/LYpjVrs2ryrd1vUQuq6:MDsN4BJKYy9gClHETbFsHs2qo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
947a38e67e96dced9b1ed62adaa59e1e_JaffaCakes118

Files

947a38e67e96dced9b1ed62adaa59e1e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

093e543dbbb419c138fdf08f77e28cf2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnWire
SetDefaultCommConfigW
PrepareTape
GetThreadPriority
DeleteCriticalSection
EndUpdateResourceW
MoveFileWithProgressW
CreateFileA
UTUnRegister
DuplicateConsoleHandle
ReadConsoleOutputCharacterA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE