2de86aea3e783795e080ce5a7f3facc1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2de86aea3e783795e080ce5a7f3facc1_JaffaCakes118
Size

83KB
MD5

2de86aea3e783795e080ce5a7f3facc1
SHA1

76859cbcd4e99038bdfed2d0d298f5bf16c25c9f
SHA256

1c054f488fdd8d9a05c13488293848c865e6c2e74dbc8e0c66bd0771ae714b40
SHA512

11697852717f525ba1183c8b4042dd6cbdc42b01b64e1537e818756cbe0c8f3cedb3336fc663ba3fe596fb22cd18f6cdf514033795502294ae6bdaa0c08ce44b
SSDEEP

1536:xZZZZzy3CtnsWJ1lv9DQUlSoxtdwG3xyxSMj5X5u245jEErxTWDTMqhGKYIZTETr:xZZZZz9tnsWJfv9kAs0xQJu245jBkMq4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2de86aea3e783795e080ce5a7f3facc1_JaffaCakes118

Files

2de86aea3e783795e080ce5a7f3facc1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dbbe7a9d2db0484823bb983b85bb0afc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalProcessorInformation
FindFirstVolumeA
GetLastError
SetConsoleKeyShortcuts
GetConsoleOutputCP
GetProcessDEPPolicy
GetLocaleInfoA
SetTermsrvAppInstallMode
GetConsoleTitleW
SystemTimeToFileTime

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE