c77f59177341547ab644f1f32f8228e9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c77f59177341547ab644f1f32f8228e9_JaffaCakes118
Size

134KB
MD5

c77f59177341547ab644f1f32f8228e9
SHA1

87009fad6007a0df7d1eb2e95d1435d59e539136
SHA256

3cb029e66ca53aabce26d4d57c59b3937606a258f77b6023d88c7e668558b2e9
SHA512

9930a94dfad12a7913454d6f5310e3f23e9686dacf43395207dd63229eee61abde959677ec0263c05680dffa59b9fbbae7a376950d8b5e9f917c508e4c9b01e6
SSDEEP

3072:h+qPcSoCGUWLjYtNT41pYYfxz09Mt+JmCywFieTOu4Oy7tXN:h+1SuZUNT41pYwz09++Jm4lTh4rZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c77f59177341547ab644f1f32f8228e9_JaffaCakes118

Files

c77f59177341547ab644f1f32f8228e9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7ee98f04a538c4a4726b0144ff7fb092

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Thread32First
CopyFileExA
OpenFileMappingA
GetLongPathNameW
VirtualAllocEx
UpdateResourceA
SetStdHandle
LoadResource
GetTickCount
HeapAlloc
GetComputerNameA
LocalReAlloc
CreateFileMappingA
DisconnectNamedPipe
WriteConsoleOutputA
ReleaseMutex
GetCommandLineA
ReadConsoleOutputAttribute
GetStdHandle
CreateNamedPipeA
OpenMutexA

user32

UnregisterDeviceNotification
LoadMenuA
GetSystemMenu
RegisterClipboardFormatA
SetShellWindow
GetClipboardOwner
TranslateMDISysAccel
EnumChildWindows
GetScrollRange
LoadCursorA
TrackPopupMenuEx
ScrollDC
GetKeyNameTextA
GetSystemMenu
GetWindow

gdi32

SetAbortProc

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ