b077512e93afe03b3af2f7f79c7a9748_JaffaCakes118 | Triage

Sharing

General

Target

b077512e93afe03b3af2f7f79c7a9748_JaffaCakes118
Size

56KB
MD5

b077512e93afe03b3af2f7f79c7a9748
SHA1

a0974c4993c24187a46ae780fa810453c42d5b02
SHA256

f390cfcaf227fa7b03ced1593691f721a340084cab1d0113d991270b67d06856
SHA512

84755813ea8837674b3f26c921292064f163307f7b2065044c7bc2ce8c0bd9cb9fd6b61135998a2175e0354cd7c035da4be14f15195390107915b7d38d8f96f1
SSDEEP

768:Z2cPI72EgOVzcQ/rIT/M6OHzaFmaW0HDAS58lWUMKrrJzS/tLoBRNdPzHT0GrK3Z:bagbd/clSelWMrrJzfPzQOK3rO1cvjP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b077512e93afe03b3af2f7f79c7a9748_JaffaCakes118

Files

b077512e93afe03b3af2f7f79c7a9748_JaffaCakes118
.exe windows:4 windows x86 arch:x86

537838ec48c7bd5ef6326ff5222d8817

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadUILanguage
MoveFileA
lstrcpyW
TlsSetValue
RtlZeroMemory
SetCalendarInfoA
GetCommState
SetSystemPowerState
GetCommandLineA
CloseHandle
SetProcessPriorityBoost
GetOverlappedResult

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE