38479d60927d080810957e46d0f39c65_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

38479d60927d080810957e46d0f39c65_JaffaCakes118
Size

66KB
MD5

38479d60927d080810957e46d0f39c65
SHA1

d295970850acbf735ac91dbed022f6ca887682f9
SHA256

92b3795cc403e09ec7f4bb6eb559fb9270bb2b6c66f17908b4a42d8b77723700
SHA512

957e915c4cd6fbd7976519e7c8fe795f4324296cee2857cc75e72d2e78f8efcc3a75eda1d70a3599bd24ccee49c756539cca9c4af7f0de2de9e1c702f6106e1d
SSDEEP

1536:nVuR8IXX1tAu9InbhAP4iYviez+iCIqWzCCTTgF9N0:YRnH1tp9WNAwMVidBgFI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38479d60927d080810957e46d0f39c65_JaffaCakes118

Files

38479d60927d080810957e46d0f39c65_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c5a06daa4f3831151a73631c13ea20dc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenThread
SetConsoleCursor
_hread
SetFileTime
LZClose
SetConsoleCursorInfo
VDMConsoleOperation
GetStringTypeExA
SetComputerNameExW
BuildCommDCBA
GetStringTypeExW
GetBinaryTypeW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 52KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE