10b2569fdea361d78774462d7936ec5d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10b2569fdea361d78774462d7936ec5d_JaffaCakes118
Size

1.0MB
MD5

10b2569fdea361d78774462d7936ec5d
SHA1

47e018146876805685360b9a93762da933688e9e
SHA256

97dcfc225a301cdc8301b6bfb0b5e6b4c76c5c5edc4b8994166307082590f5d3
SHA512

4b5835cced4ff398a97cd711863e5755534e0e905d80faed15c7d419755e0059d25f1ca4f4ebabb8175de57f812050d4fab1a9cf1e4da014e0bf8d9f39bb1bbd
SSDEEP

24576:f7BbzDxDPr/sli/WUX92gkD6q2rGPBQC4:fjDPr/5WUNzx5GPk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10b2569fdea361d78774462d7936ec5d_JaffaCakes118

Files

10b2569fdea361d78774462d7936ec5d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

781888c6c123d28fca979d95016ed0cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
GetSystemInfo
GetCurrentThreadId
GetACP
HeapAlloc
ResetEvent
Sleep
GetStartupInfoA
SetErrorMode
GlobalAlloc
WaitForSingleObject
LoadResource
GetStringTypeA
SetHandleCount
EnterCriticalSection
LoadLibraryExA
GetCurrentProcess

Sections

.text
Size: 341KB - Virtual size: 341KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 504B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 692KB - Virtual size: 691KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ