039b058e12aeaa27ff5a03f35284d8f3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

039b058e12aeaa27ff5a03f35284d8f3_JaffaCakes118
Size

80KB
MD5

039b058e12aeaa27ff5a03f35284d8f3
SHA1

9d45d369fe63b20ec91da0c0d8064bafce508734
SHA256

38a7428f122e31dae5e50e0c1e68788957213c0130eb07d1eaa863dd6a3e9f36
SHA512

fe293ff3a948d693cc2a2a2faa82d8ae5d0ec3eb2c8dafb5121872eaa3759b3425fa508ddf5c7e5a0f410c57d7fef3fbd532e62542ff06b4738c1eee5fe0c861
SSDEEP

1536:LoayYQ7e/OEB6MypdRPvjrp0hbq6p8fLUGS6gTK/Yw0bD+FNceMTRIDQdsWAeXMr:s7rfjdGb9Gd0mJQRRdsWAxLBN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
039b058e12aeaa27ff5a03f35284d8f3_JaffaCakes118

Files

039b058e12aeaa27ff5a03f35284d8f3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0ae80f4ca00981e2957da92aeb878bf4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fprintf
_except_handler3
_adjust_fdiv
__p__environ
_cexit
__setusermatherr
fwrite
free
strchr
_XcptFilter
strlen
sin
fopen
fclose
_onexit
__getmainargs
atoi
strstr
malloc
__p__commode
__set_app_type
_exit
strcmp
exit
_setmode
_acmdln
_initterm

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE