bd6fc168cce44b7b3fda3da0c0264fc1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd6fc168cce44b7b3fda3da0c0264fc1_JaffaCakes118
Size

48KB
MD5

bd6fc168cce44b7b3fda3da0c0264fc1
SHA1

565f41f261a5702b72c46019db32a32334c2a47f
SHA256

87cd6b82715157ea8be479738b430baaf7bd81e340a39906ecea3ca3af792003
SHA512

d28bb24e82f9ba203789aa1bcb668b308bd629313f02eeeca467526e098fc5123e801fe2e68f753e6eb2cfdf451dd0c4cdce3833b695c0f7481db621a0d3c878
SSDEEP

768:x0PBQOWyTnpH6JQboHOUaTx7PvVL9Sx4DNHuQHmj3W5pCwH09E/N0:x0PeBXooHu7XV5SxeOQH3CwHUK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd6fc168cce44b7b3fda3da0c0264fc1_JaffaCakes118

Files

bd6fc168cce44b7b3fda3da0c0264fc1_JaffaCakes118
.exe windows:1 windows x86 arch:x86

cc7d51a44ad2397a1d11e1f0fe3ddde2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteProfileStringW
SetDefaultCommConfigA
WriteConsoleOutputA
CallNamedPipeA
PeekConsoleInputW
GetConsoleAliasExesA
ScrollConsoleScreenBufferW
EnumDateFormatsExA
GetCurrentDirectoryA

user32

LoadMenuA
LoadKeyboardLayoutW
CharNextExA
GetClassInfoExA
SetWindowLongA
SetPropA
CreateWindowExA
TranslateAcceleratorA

gdi32

EnumFontFamiliesExA
CreateEnhMetaFileW
GetCharacterPlacementA
CreateColorSpaceW
GetCharWidthFloatA
CreateDCA

Sections

.code
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data?
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 1024B - Virtual size: 782B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ