976b016315bf5d2c4417c8f408cb727f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

976b016315bf5d2c4417c8f408cb727f_JaffaCakes118
Size

66KB
MD5

976b016315bf5d2c4417c8f408cb727f
SHA1

5c263c35ad95406c33600ef08dce5e93b3122eff
SHA256

23693f80b8dc0045c57818b3a3e7ee5102b64f0aeb0998ff1d9099ecb09b5208
SHA512

9486f568d8ae9ad5f4fc033eb09b162e220d3999ba46c972db59f208c9e0989ef07757030a6161358b1483d13d771547dae541b781d80a5c37fd2e4fe4c6e247
SSDEEP

1536:gOkPfV6WiIE63t2VSeF7qnq6YRHl5hiF2:0XMWiIE6gorKl5hI2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
976b016315bf5d2c4417c8f408cb727f_JaffaCakes118

Files

976b016315bf5d2c4417c8f408cb727f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3e3cf203d43ad500415ba547a7382744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileValidData
Process32FirstW
UnmapViewOfFile
GetDllDirectoryW
OpenSemaphoreW
TzSpecificLocalTimeToSystemTime
FindNextFileW
lstrcpynA
GetCurrencyFormatA
GetConsoleCursorInfo
EnumSystemLocalesA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE