a47343836ce66c176df316138cdc7b00_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a47343836ce66c176df316138cdc7b00_JaffaCakes118
Size

62KB
MD5

a47343836ce66c176df316138cdc7b00
SHA1

20a372923cdd4f2abf2b18a4c8986bfaa6511122
SHA256

cbd22e815a2f482b4af7576a5282c039065694dab5030b1e66579ea54a432d13
SHA512

6bb9ceae9703bc2cd9dcaddd19d45017469a6574839edfb3299cc8bee1e2b603494b3276fccbe072fa6d91dffccd69807fbaa5fa4b66adb22ce21ff27131ae67
SSDEEP

1536:uFKuQ7B3eaTIvTlYzKyagRtbpPAu6DAshxAyIeI1yfgTLy:uFhQ7B3ea2SKyag1Zy1hqyj0y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a47343836ce66c176df316138cdc7b00_JaffaCakes118

Files

a47343836ce66c176df316138cdc7b00_JaffaCakes118
.exe windows:4 windows x86 arch:x86

23e034f432b9409578c988a7537fd440

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidLocale
CreateJobSet
SetCommState
ReadFileEx
GetModuleHandleW
CommConfigDialogA
GlobalCompact
RtlFillMemory
SetThreadUILanguage
GetEnvironmentStringsA
_lwrite
GetFileSizeEx

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 47KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE