15b175d366e5f1ae5afa20740f27f93b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15b175d366e5f1ae5afa20740f27f93b_JaffaCakes118
Size

3.1MB
MD5

15b175d366e5f1ae5afa20740f27f93b
SHA1

eba1d88ae26b2382d32797f9e571cac0f9375751
SHA256

cde0f5d2ab01145d37841e25097cc9e6eb7ef15c230273b198cc648d6a1c36c3
SHA512

aa843ab1fa94c51dec52db28f7f6662e7e83722ab6f84036f24ec991b74bb8737e3e578acf95b80ca97e1319406bcc5527f2200f027c8a17b0ec60775ddbc7e1
SSDEEP

49152:mTSoekqEVc3J8NqQObImPCOi3OtQB1xFBlHCqHd55jmhBXyzQRsds4WkbfD:PI9N02oQnxt55j5URH4PrD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15b175d366e5f1ae5afa20740f27f93b_JaffaCakes118

Files

15b175d366e5f1ae5afa20740f27f93b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2ed35d00005bcf73429c84c634300f22

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleMode
GetFileAttributesExA
GetProfileStringA
CreateEventA
SetUserGeoID
GlobalHandle
VirtualAlloc
SetLocalTime
GetConsoleAliasExesLengthA
GetDriveTypeA
ReadConsoleOutputAttribute
SetCommConfig
lstrcatA
CancelWaitableTimer
WriteConsoleOutputAttribute
SetHandleInformation
GetVersion
HeapCreate
lstrcpyA
GetWriteWatch
lstrcmpA
GetModuleHandleA
SetLastError

d3d9

Direct3DCreate9

advapi32

CredMarshalCredentialA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 525KB - Virtual size: 865KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 423KB - Virtual size: 422KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ