03f3abf81bf16b4dda8b97744d4ec1ba_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03f3abf81bf16b4dda8b97744d4ec1ba_JaffaCakes118
Size

80KB
MD5

03f3abf81bf16b4dda8b97744d4ec1ba
SHA1

1545f2f1f3f56465691805dbd1633ca79b9ad905
SHA256

cba20b73d5b2fef672ae6f0f8636dd28560680f3c4376122d54be5a7a519d11c
SHA512

8e17b871d1aad6a8f12ef00245b887a8c4b4a019c978b9769d16a406d296f88ce18a2750b0404ac2e98e16050795996b28d5dfe0cab07bde8e92eaa3fb05fb30
SSDEEP

1536:r6zzzzIZdp14bR4NoICUSZWYo/kV5Jm/3kzw7kbJH6CaY2z82hW8fPL:r6zzzzI7pmPRpnc/3kzw7kbYL8vYL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03f3abf81bf16b4dda8b97744d4ec1ba_JaffaCakes118

Files

03f3abf81bf16b4dda8b97744d4ec1ba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

462c7b65ad1c09d8f24a403cf8327bcf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetBinaryTypeA
CreateVirtualBuffer
ConsoleMenuControl
RtlCaptureStackBackTrace
SetFileValidData
WriteConsoleInputA
SetConsoleDisplayMode
EnumSystemLocalesW
SetTermsrvAppInstallMode
SetProcessPriorityBoost

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE