c88783d6a63056e753d21ca990d53314_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c88783d6a63056e753d21ca990d53314_JaffaCakes118
Size

83KB
MD5

c88783d6a63056e753d21ca990d53314
SHA1

68f105da84f347905b8e8e7c613078f5415187fe
SHA256

86e7dbfe5ba7b479f923156f196e1aed9c8e67d1e74e8e283561425d2c5cc51d
SHA512

1cbd23cac068bdc2ebb3dd5e25a1452729622ff93247f0984913da8eb3d2cbcbba068bb056340205e674b75118df1292c99e177348c56b0706fc068934e7ce6a
SSDEEP

1536:cDHXPRiDt/ylYagAkZV+tjjEErxTWDTMqhGKYIZTET8bDQ:cjJWVfAztjjBkMqhGKZTbbc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c88783d6a63056e753d21ca990d53314_JaffaCakes118

Files

c88783d6a63056e753d21ca990d53314_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8f615f339434a23aa1e3e0af0401910d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceLanguagesA
GetConsoleInputWaitHandle
GetPrivateProfileIntW
CreateHardLinkA
GetSystemWindowsDirectoryA
GetConsoleDisplayMode
UnhandledExceptionFilter
BaseInitAppcompatCache
FillConsoleOutputAttribute

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE