04777a45996764f915aa2452dce87bab_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04777a45996764f915aa2452dce87bab_JaffaCakes118
Size

76KB
MD5

04777a45996764f915aa2452dce87bab
SHA1

cba3408f5bf71386eaf575e682c5efafeb804edb
SHA256

5d3895413eb4efc7cb076a735d0ce475157ebedfc4b9134278994375a581c834
SHA512

cd2d95ecd8f75ef59dbf80fe64da797a66e6251c2ffd34319e165f185f23eec87ac7325f35c50343fecd64dfc4cb0a21562a6ab88422550eecd05b72d99f53e2
SSDEEP

1536:cFCXBtx4P7JW6CEurLq/lvkA/QNUe/jEErxTWDTMqhGKYIZTET8x:cMjOzJWzFXwCNUcjBkMqhGKZTbx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04777a45996764f915aa2452dce87bab_JaffaCakes118

Files

04777a45996764f915aa2452dce87bab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a9f3503dd9ac514200b4ced75750bff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleFont
SetErrorMode
Module32NextW
GetCompressedFileSizeW
BaseInitAppcompatCache
EnumResourceLanguagesA
GlobalMemoryStatusEx
FileTimeToDosDateTime
SetConsoleOS2OemFormat
GlobalWire
GetSystemWow64DirectoryA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE