dcd1b293f0d4894f8056d09c70fc871f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dcd1b293f0d4894f8056d09c70fc871f_JaffaCakes118
Size

208KB
MD5

dcd1b293f0d4894f8056d09c70fc871f
SHA1

c029489d36fe1dcf65bf57dbd6ee84d2603fffd6
SHA256

93619c46e9fbcad04483e90b0038d2a6f285778713ad7ae9234c13eee342c4a4
SHA512

f1fb76ea8893f9d04a97224f9ec3fd15ff3ba33d4cad09858c2cecaefe2fdf42b76624532f56821117a132f6b4d5c8d5fdc8c723b46c5917d14c9793f123014f
SSDEEP

3072:V6kPY2t5gSx1gSP3g4m9jzPuFwW0KtmuFSKK4uD13Z7Xif:kkJt5xPQ4QPuFVdK4K3RX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dcd1b293f0d4894f8056d09c70fc871f_JaffaCakes118

Files

dcd1b293f0d4894f8056d09c70fc871f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

80bd9234e55623ce49dc2867d23d4699

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLocalTime
UnlockFileEx
OpenSemaphoreA
GetLogicalDrives
DeleteTimerQueueEx
ReadConsoleA
FindAtomA
GetCommandLineA
SetConsoleScreenBufferSize
EndUpdateResourceA
IsSystemResumeAutomatic
SetVolumeLabelA
VirtualAllocEx
VirtualAlloc
GetUserDefaultUILanguage
RaiseException
SetProcessWorkingSetSize
LZCloseFile
lstrcmpi
CommConfigDialogA
ReadConsoleInputA
OpenJobObjectA
OpenWaitableTimerA
GetDllDirectoryA
GetVDMCurrentDirectories
GetDiskFreeSpaceA
GetCurrentProcess
OpenFileMappingA

gdi32

SetViewportOrgEx

shell32

SHGetSpecialFolderPathA

winmm

timeBeginPeriod
timeGetTime

Sections

.itext
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 196KB - Virtual size: 477KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ