c8c3cfae7ce7f510fe97cd90d86b67fc_JaffaCakes118 | Triage

Sharing

General

Target

c8c3cfae7ce7f510fe97cd90d86b67fc_JaffaCakes118
Size

94KB
MD5

c8c3cfae7ce7f510fe97cd90d86b67fc
SHA1

c296054fe137e8158494a8e185e985cd3b606d15
SHA256

c7a5c40db9748fc2120557784f0061ea60663cbf0cc6921b9687a756defdd2cc
SHA512

e4efc4c89b2185ad04d6c1c30af337b0968ee86afc0f086b17d6894d76916bad13bbe26d3499b031edae51b0dd2222b79aac5b01ecdb2bdf5b9c4531606821ac
SSDEEP

1536:b18yI9Klsa0okz+X+QEpsfotJ9oBUjpDW+3CCvJCuI:58yRlsasKOQEifotJ9oCjpWeCCvJCu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8c3cfae7ce7f510fe97cd90d86b67fc_JaffaCakes118

Files

c8c3cfae7ce7f510fe97cd90d86b67fc_JaffaCakes118
.dll windows:4 windows x86 arch:x86

0479c26ca6b4aaafa533fe4c4c8551c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

pdb.pdb

Imports

kernel32

Beep
OpenProcess
GetCurrentProcessId
lstrcmpA
MulDiv
LocalFree
Sleep
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
TerminateThread
WaitForSingleObject
CreateThread
CloseHandle
GetLocaleInfoA
LeaveCriticalSection
EnterCriticalSection
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
HeapAlloc
GetProcessHeap
HeapFree
ReadConsoleInputA
HeapValidate

msvcrt

memset

Exports

Exports

gwxuc

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 486B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ