abe3438814d412405f63a5e457597dc7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abe3438814d412405f63a5e457597dc7_JaffaCakes118
Size

76KB
MD5

abe3438814d412405f63a5e457597dc7
SHA1

c6e88bd775c101d9eace53ba2d9bb11b2c84791f
SHA256

d80c5802ebf938f85d6314ba0c00539d1a0f252ead6465557b9a3d0b82698977
SHA512

ab28319d34df5f80d7b809738a340abf02fde2800ece6e3ace80c7a765b9e2b28acb3234df8516a4ddb9ab11e7de86f3db22f9efb9a839ded805985195b4102d
SSDEEP

1536:Vj/8Z8Vc/UmbZo+1isVGTZE9J9TMMHpjVrs2ryrd1vUQuq6:Vj/KSccmZoiVQmbM8Hs2qo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abe3438814d412405f63a5e457597dc7_JaffaCakes118

Files

abe3438814d412405f63a5e457597dc7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f387f48d7212d2ecb6241e5f327c453b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetComputerNameExW
Sleep
GetExitCodeThread
SetDllDirectoryW
EnumTimeFormatsA
SetCommBreak
GetTapeStatus
lstrcmpA
PurgeComm
TerminateThread
RegisterWowBaseHandlers
AllocConsole

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE