b6c0c46727bc83176331654e2a55e8a0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6c0c46727bc83176331654e2a55e8a0_JaffaCakes118
Size

242KB
MD5

b6c0c46727bc83176331654e2a55e8a0
SHA1

38bc4c3444fbee7aa2e4e9e32e5850fc9ee3913f
SHA256

5032ff3f129555c5a9f46c94b3f0045f132a4682c34b837c881444a771e33eb1
SHA512

2a97ef9a92a7b8a7253f4ef7d8abee06e31ae4d5207440a0618a4530da5204f82df2a7a02d46acee745652cdf7bad1f6940034edd3a47f7b44b7d50e600aa400
SSDEEP

6144:XadBEGG48PbsP6sV+tynTw/1gZlXspzqhivvxc+tBn4VbX:K/8PgPJgkPXcpHBdhWbX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6c0c46727bc83176331654e2a55e8a0_JaffaCakes118

Files

b6c0c46727bc83176331654e2a55e8a0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3ede871f504dee75b485f08c01cf3ea1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

InitializeCriticalSection
GetProcAddress
LocalFree
RaiseException
LocalAlloc
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
GetShortPathNameA
ResumeThread
WriteProcessMemory
GetPrivateProfileSectionA
GetStringTypeA
LCMapStringW
LCMapStringA
RtlUnwind
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW

user32

DefWindowProcA
AdjustWindowRectEx

Sections

0
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

2
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 45KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5
Size: 7KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE