b6529b720b64330d640a7a699a2b615c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6529b720b64330d640a7a699a2b615c_JaffaCakes118
Size

56KB
MD5

b6529b720b64330d640a7a699a2b615c
SHA1

579b66272c0253165d17e06d742e9473fd0514f4
SHA256

c48ff6ee808e95d3836e33f3246bb834531434a7a8a9946377cbfeea27f3f031
SHA512

8a1dc6c8043fbdadab16a9a513490aadb3e1a31de92f94faae64bb613e3d513fa0e2261c3d512e243d0fe29ef2fdd3620e5aae522ac6dd171105d24df1272d78
SSDEEP

1536:2m6pdPPVUwNJWkYCnFU2w/eWcTkApBn/J:vmhN71U2wATkA3x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6529b720b64330d640a7a699a2b615c_JaffaCakes118

Files

b6529b720b64330d640a7a699a2b615c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4d6da337edac8b6a8c3f7cdc406076c4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDefaultLCID
GetCompressedFileSizeW
GlobalGetAtomNameW
WideCharToMultiByte
BaseCheckAppcompatCache
SetConsoleMenuClose
lstrcpy
CreateNamedPipeA
WriteProfileStringA
GetSystemWindowsDirectoryW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE