dc8061d7f16469eb6dac5aab7f687fc3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc8061d7f16469eb6dac5aab7f687fc3_JaffaCakes118
Size

62KB
MD5

dc8061d7f16469eb6dac5aab7f687fc3
SHA1

4f177af799dcf3447ea1f594279969cb3bf44564
SHA256

eb8a3aa007eb4372fa4bac9e450b991f19341c027c6cb785f1cc2788a76514d8
SHA512

82f4eefb737946b41a3c737d355276c2fd2bd7fa4d37877cdade2db3847e042cf61daa83e727249f106777f07aa2706a8b15c105232fd2220c91a3ea50f71605
SSDEEP

768:E0b7SNIhAR8ftF7j4nOJIoRelIMnblp91/rQZnu7tWaK9LXOoFeJddKk2kXi+S1n:q72fz3PQBl/kQJWajcesk2cDYlhep

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc8061d7f16469eb6dac5aab7f687fc3_JaffaCakes118

Files

dc8061d7f16469eb6dac5aab7f687fc3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0ca0bbea940f1151c7f13906d2ccf010

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PrepareTape
ExitVDM
GetProcessHandleCount
TryEnterCriticalSection
OpenFile
GetNumberOfConsoleFonts
FindFirstChangeNotificationA
EnumResourceTypesA
GetConsoleKeyboardLayoutNameW
WriteConsoleOutputA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE