3a6f0145b21cb0b7a2569b058a2a765b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a6f0145b21cb0b7a2569b058a2a765b_JaffaCakes118
Size

83KB
MD5

3a6f0145b21cb0b7a2569b058a2a765b
SHA1

b1c52dc3620ff3d71be36207cc8db9bc90b10c4a
SHA256

4f7599cd9db66608cb98da55a4454e1ce26a2375c34a0facfac2aac33fe1b938
SHA512

ff6b34b69e180acb1971d5d907221a832c7f23d6e9f8f93b83f9fdd957372feb4ca2f8bfb24ca2f5b2a7cd8c2c15e1e06ad8c59f9e254f811d6b1353744d087c
SSDEEP

1536:dvJeRqAtTmfCXzzIYovCyqXfuIJohXIZjUcIZRzqjEErxTWDTMqhGKYIZTET8bDQ:dv768Y1ymfuIJiOi2jBkMqhGKZTbbc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a6f0145b21cb0b7a2569b058a2a765b_JaffaCakes118

Files

3a6f0145b21cb0b7a2569b058a2a765b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6b4a5034a4e7f28e2ea8e6a2c366322e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEvent
FlushInstructionCache
DosPathToSessionPathW
SetWaitableTimer
GetExpandedNameW
DisableThreadLibraryCalls
CreateFileMappingA
GetComputerNameExA
SetFileApisToANSI
lstrcpyn
GetSystemTimes

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE