b0b80854a3cd6fb39a000746795fbbcb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b0b80854a3cd6fb39a000746795fbbcb_JaffaCakes118
Size

83KB
MD5

b0b80854a3cd6fb39a000746795fbbcb
SHA1

8043770cb2be00dc111c0cd5866fbf8e37df77fc
SHA256

d5963dffaaf3a8f5939e26d4a0a907d6b6bc9943383b8e0f733c53ebb8c62aed
SHA512

a39e112b22ff63c8b4a3e8239fed19dfebb5c0d655ebfad2d361b2a4a469845cc98b34c8f97958dc16f2e1c4727132a75eef2be3969c38e67c6c738d98b4a822
SSDEEP

1536:FXVVVo/FPB5dRxIyeNslvz5czT1CnAhfU3W+Eh8xMAjEErxTWDTMqhGKYIZTET8Y:gBB5dRDegz5czT1+Eh81jBkMqhGKZTbY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b0b80854a3cd6fb39a000746795fbbcb_JaffaCakes118

Files

b0b80854a3cd6fb39a000746795fbbcb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d89475fc5c8eb6e7550aac1a575fe39d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateVirtualBuffer
ExpungeConsoleCommandHistoryA
CancelIo
UTRegister
SetErrorMode
ReadConsoleInputA
SetConsoleCursorInfo
SetFileAttributesA
GlobalCompact
BuildCommDCBAndTimeoutsA
IsBadCodePtr

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE