b529ca65295f272811f5b831d6f5a706_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b529ca65295f272811f5b831d6f5a706_JaffaCakes118
Size

116KB
MD5

b529ca65295f272811f5b831d6f5a706
SHA1

0d584d8c80b9d6648181ff6e989530fb3515af25
SHA256

84210013ebb5e8b5489fa2d822809846c7f51ad8503bb895ce09a067f672b0e1
SHA512

77ed09bc88eb9f507822dedff1ca23208964589ff71b31756c55edbc1f39cb026c911593ca96413d3cce45229b43c0cf001f4b4ef0175568782a0766fd8c919e
SSDEEP

3072:cnKYjiRhwYfjC6NBfnRACX/VUJXIa1RGhKiE:cn756jXnf6CXS5Il

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b529ca65295f272811f5b831d6f5a706_JaffaCakes118

Files

b529ca65295f272811f5b831d6f5a706_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a7e263e889b9456a7fefb57b9995343

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBA
GlobalFree
HeapFree
CloseProfileUserMapping
GetLargestConsoleWindowSize
HeapDestroy
GetFileAttributesA
GetCommandLineA
ExitProcess
GetStartupInfoA

Sections

atsec0
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

atsec1
Size: - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

atsec2
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.atsec3
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ