5360e47edbb035be8864fc2ef5ae34ee_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5360e47edbb035be8864fc2ef5ae34ee_JaffaCakes118
Size

83KB
MD5

5360e47edbb035be8864fc2ef5ae34ee
SHA1

821460aa91cb098d67e16a0fd0d38b8aa87f0f8b
SHA256

ff2bd9d463ec91995fd2f26edceae8fe334bce9783a6298d014ea4a05a2f14d8
SHA512

31b37c01c22d8b31c0ed72bbfd4a3ea7a9f4a60466d90aec09b56dbb40445fa5922e4033dd56999bf40b35f7bc4dab8dd7dcdefcd444d6803c053361f6395a99
SSDEEP

1536:+Z34hABRytdY/S+v6E672ACBdO4UjEErxTWDTMqhGKYIZTET8bDQ:Qo8RKw6E66rO4UjBkMqhGKZTbbc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5360e47edbb035be8864fc2ef5ae34ee_JaffaCakes118

Files

5360e47edbb035be8864fc2ef5ae34ee_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d41fd774931c2d12fb99bfc1af6a7810

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
DefineDosDeviceW
GetCurrentDirectoryW
SetLastConsoleEventActive
BeginUpdateResourceW
CheckNameLegalDOS8Dot3W
WinExec
CheckNameLegalDOS8Dot3W
SetVolumeMountPointW
GetDriveTypeA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zrdata
Size: 27KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE