f30da25ca9cb0fba35e559e7b7e67998_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f30da25ca9cb0fba35e559e7b7e67998_JaffaCakes118
Size

174KB
MD5

f30da25ca9cb0fba35e559e7b7e67998
SHA1

752a3a66a2c300b3527c3057b49e1ac26f737ec0
SHA256

3aed5c62224849f2d6925f824a8c7a79f3a2698af6649c5d12581a093c5d0837
SHA512

cf75bd6c58060af632f577866e2f08f8eb44c5629107e04601ca82c3cd8bf393a9b954db585fc7d877078a40c51849048757e2dd4dc90675a668a254b2578f04
SSDEEP

3072:woTu2/pDLllEf5I/0+Qpcfda445qpQqyYYa4uX9UTP6qGTDKvN14Wb2DPt:fTH/dT0vpcfda445qSqy24uX9G6qs2vi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f30da25ca9cb0fba35e559e7b7e67998_JaffaCakes118

Files

f30da25ca9cb0fba35e559e7b7e67998_JaffaCakes118
.exe windows:4 windows x86 arch:x86

20457fd808c4febe371cf1befa7c70f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
AddVectoredExceptionHandler
EnterCriticalSection
ExitProcess
FindAtomA
GetAtomNameA
GetCommandLineA
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetStartupInfoA
HeapAlloc
InitializeCriticalSection
LeaveCriticalSection
OutputDebugStringW
SetUnhandledExceptionFilter

msvcrt

_stricmp
__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_fmode
_fpreset
_iob
_onexit
_setmode
abort
atexit
fflush
fprintf
free
malloc
memset
signal
strcpy
strlen
wcslen

winmm

PlaySoundA

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ecaafx
Size: 159KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE