0be2e0c78f8b3c07a162ff9dbadf1fc3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0be2e0c78f8b3c07a162ff9dbadf1fc3_JaffaCakes118
Size

67KB
MD5

0be2e0c78f8b3c07a162ff9dbadf1fc3
SHA1

6e0cd1c70fc93380237135477694420c10e8bec4
SHA256

2f2aa5a2c8440a62bb0587d5b2d2505c26050d6d82f19f719a9a7660713a2995
SHA512

94d3b29c28a4d0485c47932de751333e69ddcf796a25c359d4182d4f7517e501758a0aa49d6a53abe7f8f86f0405f888b9f718f2ee84ca234a352c85261001d6
SSDEEP

1536:8aJUOLywb7+pb6dnIq48ZQsJUJg5My87bmYd2NBk04:nRxaQD+sJSgalaYUL4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0be2e0c78f8b3c07a162ff9dbadf1fc3_JaffaCakes118

Files

0be2e0c78f8b3c07a162ff9dbadf1fc3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3582bd4b80f43bdf949a05035db61ccc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowDC

kernel32

GetCurrentDirectoryW

shlwapi

ChrCmpIW

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

net3e
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

net1e
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

net5e
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

net4e
Size: 512B - Virtual size: 54B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

net2e
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ