11d7b247c1b79b4fd3d2796c5036845a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11d7b247c1b79b4fd3d2796c5036845a_JaffaCakes118
Size

83KB
MD5

11d7b247c1b79b4fd3d2796c5036845a
SHA1

ada57c35131fd49197c72d062c9abc64c910193c
SHA256

67e513aab60bf9ff13655d600f997217afd65a9b78b031a0988fae77082bf57c
SHA512

a4b6cc207ff254e44847db4b3ae76ba58a097b642dec2bb00f71608b10a937a8b2bc51fc6dd97f370ee9b27201e1395f14020f789fbf8848190911fed6de0024
SSDEEP

1536:g91bWyFmLk2fdEqDbo6SjtaGfkeqIkI3zefcBKjEErxTWDTMqhGKYIZTET8bDQ:AbPFmLk2fdTVSjNYI6fcBKjBkMqhGKZg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11d7b247c1b79b4fd3d2796c5036845a_JaffaCakes118

Files

11d7b247c1b79b4fd3d2796c5036845a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b0cd7cf54356c6e0b6ba9cdf874115a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultUILanguage
NlsGetCacheUpdateCount
GetConsoleInputExeNameW
GetConsoleCP
GetConsoleAliasesLengthW
SetConsoleNumberOfCommandsA
OpenFileMappingA
CloseProfileUserMapping
lstrcpynW
DisconnectNamedPipe

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE