b9985b277144a38f53a245eec42b4d0c_JaffaCakes118 | Triage

Sharing

General

Target

b9985b277144a38f53a245eec42b4d0c_JaffaCakes118
Size

194KB
MD5

b9985b277144a38f53a245eec42b4d0c
SHA1

bba46eb3ac72cad6313624fca8682bd07681f991
SHA256

d315451c6357758c530f52b8615d73523c7ecd223e5572b755058dd4f621d3fa
SHA512

a7d917bbee4a8f2ee34fb056857c99c5443901d48a673bb48647f6cfa1570ac56d3fcc3d5f16ed9b5e6f75eda1b9980a8409b7d98f57da43372454538e163ee5
SSDEEP

3072:a/bBCICA93Uc3p/k17ADJAPaWQuyfMBH24PxZxPGT6HbmOcO3kdAuWuTH0:at/Ff3ps19SwyYHDPTxbbGhWs0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9985b277144a38f53a245eec42b4d0c_JaffaCakes118

Files

b9985b277144a38f53a245eec42b4d0c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e64c3fb3e6a52b21351f2ce9f3782911

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetCurrentConsoleFont
VirtualAllocEx
HeapAlloc
SetThreadPriorityBoost
OpenFileMappingA
WriteConsoleInputA
GetCurrentProcessId
GetConsoleAliasesLengthW
SetVolumeMountPointA
GetConsoleKeyboardLayoutNameA
SetCommState
GetWindowsDirectoryA
ExitProcess
WinExec

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ