afad114fd34e2bfee4de5cd1bd429f9c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

afad114fd34e2bfee4de5cd1bd429f9c_JaffaCakes118
Size

83KB
MD5

afad114fd34e2bfee4de5cd1bd429f9c
SHA1

6074f4a15f041da15bbf175fe7ed4530a25b3553
SHA256

cf3339e2cb460dc65ed11e85231ddf55b2b886db8acf121d0b205bafb5c3b072
SHA512

ca98f0e7b0ffb32ba1f54ef62fde438e45f64432ca26ade363d63608e25188d4a913285475be08e433700fac1738414f0a4329d319f484a6390a5943104d91f1
SSDEEP

1536:h/uAxsl3qmMTmX67kUR60l/V7TX3CHp/8qKm6dl2U7CGfMNobT/wpjVrs2ryrd1m:luAxsl3qpTmmkn0j7TXyV8Y6/2wJAHsp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afad114fd34e2bfee4de5cd1bd429f9c_JaffaCakes118

Files

afad114fd34e2bfee4de5cd1bd429f9c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d48a374b92e0c26d316a33f47f02f4a5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelIo
GetVolumeNameForVolumeMountPointA
SetConsoleFont
GetThreadTimes
CreateConsoleScreenBuffer
CreateJobObjectA
OpenThread
InterlockedDecrement
ExitVDM
GlobalFindAtomA
LockFile
CreateFileMappingA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.brdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE