b177a1a4453e4e2121e26760095c4894_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b177a1a4453e4e2121e26760095c4894_JaffaCakes118
Size

216KB
MD5

b177a1a4453e4e2121e26760095c4894
SHA1

d852457d36cd702ed28a2ac253869e2790dca9e0
SHA256

597fb3402f37f472ec7576fb17ca33eedf711bb8ded5d0cda6cee8618ac92f56
SHA512

69d2bee2a01842cbcaaacf38488b63db46e61e23003b5f89eef171e6c1ea2745837677051bbebfe820c582bca9ac82d5ee5bef497b12e76a89393ee5e4fa7067
SSDEEP

3072:CmpkNTUG+TuNtIgoPOeHOpUE7tPMDgIkxV1qWmMNiGxsWSKwl4:Cm8UG+ePoMx9IkxbqtmVsWH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b177a1a4453e4e2121e26760095c4894_JaffaCakes118

Files

b177a1a4453e4e2121e26760095c4894_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e321a98d5f9f7b286064eff36e95ea97

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
SetConsoleFont
GetThreadPriorityBoost
FindNextVolumeMountPointA
GetCurrencyFormatA
GetFileAttributesExA
AddAtomA
ExitProcess
CommConfigDialogA
FreeConsole
WriteConsoleA
ClearCommBreak
WriteConsoleOutputCharacterW
GetConsoleCursorInfo
GetFileAttributesA
ReadConsoleInputA
GetThreadSelectorEntry
GetDriveTypeA
SearchPathA
IsValidCodePage
GetCommModemStatus
OpenProfileUserMapping
RaiseException
WriteConsoleOutputAttribute
VirtualAlloc
GetCommMask

gdi32

SetViewportOrgEx

shell32

SHGetSpecialFolderPathA

winmm

timeGetTime
timeEndPeriod

Sections

.itext
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 204KB - Virtual size: 486KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ