f8c1117e660f14d37b3e734ae1e81a56_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f8c1117e660f14d37b3e734ae1e81a56_JaffaCakes118
Size

180KB
MD5

f8c1117e660f14d37b3e734ae1e81a56
SHA1

522ebed5b831578554c5ab5d616013ec0ee9c469
SHA256

95e9db560bcef1a3525443a43a4bb447ec99c521dd9b3ddceaf81373d7e4ec8d
SHA512

54ac356b37fae9aadd8490c8cc807d855d19e5a611e764128eebac153ea50e6cabe720afddb381133afe60b04ba1498e19fb6aabc37119458bc34b39142a45bc
SSDEEP

3072:vy2rG1BsDbvytD2g1sBubbgnrLIrsH1o2C1s2FETqhioZPiwwyR+3ZUhK0:vy2rG1BAG91WubbSrH1o8qlZTdiZUz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f8c1117e660f14d37b3e734ae1e81a56_JaffaCakes118

Files

f8c1117e660f14d37b3e734ae1e81a56_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f57893fd57fdf1b7807d9d0224ceb675

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strcpy
strcmp
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
strcat
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
strlen
__setusermatherr
memset

kernel32

GetModuleHandleA
GetStartupInfoA

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE