f67b94105530ad5a8bd455e2872c8667_JaffaCakes118 | Triage

Sharing

General

Target

f67b94105530ad5a8bd455e2872c8667_JaffaCakes118
Size

136KB
MD5

f67b94105530ad5a8bd455e2872c8667
SHA1

8061f7f390cb0d3ec194d4ab8cb2e3c5eabedcad
SHA256

26436355ece62e4c9e8e48c6afb0b6981d23971a180ee2ac9bc61bd7cbd3762b
SHA512

b4b2c08db7f9f69d5517593682ac7dde55a10ea5f2fc1797f1efbbe61f2d0aad5a5b8481550013694eb424f5fc296172489f21c171e1c647edb4c7c500265a55
SSDEEP

3072:/u65R+VnK9ObJRmP4Q4W5LRXRCuFRGbLXKl1UuFKU:/u65CK9ONRmwy3BFwbLXKl1UuFt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f67b94105530ad5a8bd455e2872c8667_JaffaCakes118

Files

f67b94105530ad5a8bd455e2872c8667_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c93793065418be88abd5ea752ed9b0a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_initterm
_except_handler3
_controlfp
__getmainargs
_acmdln
exit
_XcptFilter
__set_app_type
_exit

kernel32

GetModuleHandleA
GetPrivateProfileStructA
QueryPerformanceFrequency
EnumResourceLanguagesA
GetStartupInfoA

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ