325474af20bcebc6bc1f6d258e61ed9c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

325474af20bcebc6bc1f6d258e61ed9c_JaffaCakes118
Size

16KB
MD5

325474af20bcebc6bc1f6d258e61ed9c
SHA1

dd23480db9903951d1c2111e83b8d0786a7527a6
SHA256

1ba784a54f972cd1cf8f17f473be4412dc82f610506fdb2a498dd1b8a892239c
SHA512

8113b1e796891d80baa59da16c2d83157d3668e56884539b9595021ed5567bdcb7d8a321a6858cc8e35b53a533dea3640394e3912657d0c77a3a6543ecc6e348
SSDEEP

24:e1GSX2Dh9jN90nXAPiXeUZv/DbeACHxJbVsJbuKP4o/jGlKGTXhh:SoxN90X0iXeg/n8vb0buKP4oyl1r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
325474af20bcebc6bc1f6d258e61ed9c_JaffaCakes118

Files

325474af20bcebc6bc1f6d258e61ed9c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7e389ecc3ccd974766aee121d4eb9967

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fclose
fwrite
memcmp
fread
??2@YAPAXI@Z
ftell
fseek
printf
fopen
_exit
_XcptFilter
exit
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 4KB - Virtual size: 748B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE