f9d577eaa3c7bd4d276a05fb8d0f1a19_JaffaCakes118 | Triage

Sharing

General

Target

f9d577eaa3c7bd4d276a05fb8d0f1a19_JaffaCakes118
Size

149KB
MD5

f9d577eaa3c7bd4d276a05fb8d0f1a19
SHA1

3b1a647308e4e391494cc3e2b44ae9d13239f2cc
SHA256

663b24116aaec26d73cdad62d5ef7583e17f8669878840391508705aa8be9826
SHA512

b8d7bd727a17d5cbf100f7c9dd53a85a5d54a61b2649bba8ce879c8ee2293d55587f4221990c8062fd40cd8ec3e6d16792927ce90abdd3dbcce07b6ba1fab681
SSDEEP

3072:aIXluglxpJNLyg5TA/oI38w1tpQFZNLoHvM8LCqU:aLgPpLJmf3lgZpoH5Ls

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f9d577eaa3c7bd4d276a05fb8d0f1a19_JaffaCakes118

Files

f9d577eaa3c7bd4d276a05fb8d0f1a19_JaffaCakes118
.exe windows:4 windows x86 arch:x86

51fc916224764ab2433b19139a03046a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
_except_handler3
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_controlfp
_exit

kernel32

EnumResourceLanguagesA
GetTempPathA
GetComputerNameA
GlobalFree
WriteConsoleInputA
GetNamedPipeInfo
SetEndOfFile
GetModuleHandleA
GetStartupInfoA

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ