a5efcf6d5d03e59ae3ae8275e1457c8a_JaffaCakes118 | Triage

Sharing

General

Target

a5efcf6d5d03e59ae3ae8275e1457c8a_JaffaCakes118
Size

87KB
MD5

a5efcf6d5d03e59ae3ae8275e1457c8a
SHA1

e19de387403e2abe7cdb2ff2e373c4159b62dbce
SHA256

4ee2dd9deabd600211410e7390dd7b1ab84ebcc145f321525287ac7bb5ab3ee1
SHA512

bbb0c317984572e4cc48b0e79741e040f3db9745a181a21ba99a95f879b3f451196f4bf24f56b5102824415bb3285152f095321b1f37f826b801330f616e3ee5
SSDEEP

1536:9ZL2jZ0yHT1012VhRb33BrjmHqHCdbGcrm7x/jhhU7guqhfIqTSFWJ8q2kf/t6S:D2jZ0cT10OF3RrjyaCds7x/jhhmNq3TZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5efcf6d5d03e59ae3ae8275e1457c8a_JaffaCakes118

Files

a5efcf6d5d03e59ae3ae8275e1457c8a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

545aec07741cd9f0dd9fa0f53737e0bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
HeapDestroy
HeapCreate
LocalFree
GlobalAlloc
LocalAlloc
TerminateProcess
GetCommandLineA
VirtualFree
GetConsoleOutputCP
RtlUnwind
LoadLibraryW
VirtualAlloc
GetUserDefaultLCID
SetConsoleCtrlHandler
WaitForSingleObject
HeapAlloc
GetModuleFileNameA
QueryPerformanceCounter

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ