dd6f3d81edf38c99869df3adb8885e73_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd6f3d81edf38c99869df3adb8885e73_JaffaCakes118
Size

224KB
MD5

dd6f3d81edf38c99869df3adb8885e73
SHA1

0dc8b18cd2cdbdd6595fd21441c6f1cec476dc12
SHA256

21df60b820fdc7b83f17eb339a7fc4ed6fcaa56454b795d88e8f9ac0e15f1784
SHA512

9641240d0445da621b23855599a4a56eca5d2022ea9981beac3101a61271a3ef4e164b215ac1cb1d7d123fa86d4eb01174a59f0a30537ea18d444d04dc3de6cd
SSDEEP

3072:8dYKiU6BBkBbhIdP2C/3M6V5Zx2vx3sIGoU1YGAn+9+wcndw4aKrfytLE80BT6/R:hY60I2o33SjGNnAn+9+M4BrfytI16/z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd6f3d81edf38c99869df3adb8885e73_JaffaCakes118

Files

dd6f3d81edf38c99869df3adb8885e73_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fc50845129dfdb3ff698fd98a96e36e7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
GetSystemDefaultUILanguage
SetFileApisToANSI
SetMailslotInfo
CreatePipe
IsValidCodePage
WriteConsoleOutputAttribute
BuildCommDCBA
WritePrivateProfileSectionA
HeapSize
SetFilePointer
GlobalHandle
HeapAlloc
WriteFileEx
GetTickCount
WaitForMultipleObjectsEx
EnumUILanguagesA
UpdateResourceA
GetConsoleOutputCP
OpenSemaphoreA
HeapFree
Thread32Next
VirtualAlloc
GetDiskFreeSpaceA
WaitForSingleObjectEx
LocalHandle
GetTempPathA
WriteConsoleInputA

ws2_32

socket

Sections

.itext
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 184KB - Virtual size: 844KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ