aaf843bf40bc69d709f60cdd4ad14024_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aaf843bf40bc69d709f60cdd4ad14024_JaffaCakes118
Size

264KB
MD5

aaf843bf40bc69d709f60cdd4ad14024
SHA1

2ce7976328fddef63842cf186f794d4d186a5663
SHA256

3b240ac1c520063995d81fe009b875f62ed1ff05441c136c8459b83b2c4c74c0
SHA512

1f6b1985d4e0116f3601e5c6b60926028bc9d5566413bb97a2e5e48e9f36c8c2cf8cb7f4e7c7c8df306309332cb74ec13261eba5f2bebe45030a659b863dd239
SSDEEP

3072:lACL+ssGL5WQn84qbOZRLSjUh0mE5LV2T/xOyfC1BdkmxOy/m+uLvK923:lA0+1GLoQ8dQi550r6GwmK923

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aaf843bf40bc69d709f60cdd4ad14024_JaffaCakes118

Files

aaf843bf40bc69d709f60cdd4ad14024_JaffaCakes118
.exe windows:4 windows x86 arch:x86

935e93087b031229795c061800a68bb0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
ExitProcess
OpenFile
GetFileType
CloseHandle
ReadConsoleW
GetProcAddress
GetModuleHandleW

gdi32

GetRgnBox
GetClipBox
GetPixel
GetMapMode
GetMiterLimit
SetPixel
CreateCompatibleDC
FillRgn
GetRelAbs
SetBkColor
GetTextFaceW
GetDeviceCaps

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ldr
Size: 152KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ