a835382a047bdbe1efdbbb644ba2f053_JaffaCakes118 | Triage

Sharing

General

Target

a835382a047bdbe1efdbbb644ba2f053_JaffaCakes118
Size

132KB
MD5

a835382a047bdbe1efdbbb644ba2f053
SHA1

58d4ac11cfde558c6d7d2e580be84d085c1612ff
SHA256

ce5479b0801c4ed24ec6b93a404f78253a3f08e5a376afa0b774bbef0b1ff081
SHA512

43da4a6a1766aae58fc14b71bbd3e0a5cd6d079c9896a0fa153674443d318a9e320d80f8072cddea4ece2339384c48ef3180daaccb92605d7212a9a77dfe16fa
SSDEEP

1536:aGbKp4Qa/R/YF+OBP17PhU8s0BR083nKtSbj+AfCSihZhXE0//0EvrTGX3Tm0dw4:baUYF+O3BO8Koj+OGZq2ITm/LeOoUGl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a835382a047bdbe1efdbbb644ba2f053_JaffaCakes118

Files

a835382a047bdbe1efdbbb644ba2f053_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7f0d53b645db6be61103dd5cfb21c05c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleCursorMode
GetUserDefaultLangID
GetConsoleOutputCP
VirtualFreeEx
UnmapViewOfFile
GetVersion
OpenThread
SetTimeZoneInformation
SetTimeZoneInformation
UnhandledExceptionFilter
SetConsoleNumberOfCommandsA
ResetWriteWatch
SetConsolePalette
GetCommandLineA
ExitProcess
GetStartupInfoA
SetConsoleInputExeNameA
QueryDosDeviceA
LocalReAlloc
ReadProcessMemory
WriteConsoleOutputA
lstrcatA
SetMailslotInfo

Sections

ATSEC0
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

ATSEC1
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ATSEC2
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ