092a97f5d8a2435b22b505cce448d032_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

092a97f5d8a2435b22b505cce448d032_JaffaCakes118
Size

56KB
MD5

092a97f5d8a2435b22b505cce448d032
SHA1

8c6c9d06ff0d995996270461536e724094cecf88
SHA256

8c54b1b54ccc8797e3b7316206f54e6f85e372bcd7212a32bd706575f4d0ae74
SHA512

85ce52815cb3c6d1a5053cf40c23463cbc29da966b3372def6f98d221876fee8e3b203a7d5d4ca87fe45488d4f1c3fb69d7f72a43a88b362be6a03de24a7f5c0
SSDEEP

768:eXw4ilb3aQJJ9Wy0sUYVpsFxCrEJoc0T4weYZV8ESh4jfY0ax5o3fnQT8sbRzJwo:IoIQJJ9sY7wJo1pZVmYbaxAjgFwo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
092a97f5d8a2435b22b505cce448d032_JaffaCakes118

Files

092a97f5d8a2435b22b505cce448d032_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ac353f066c117b9ddc23dc2bdb9bb215

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_controlfp
_initterm
__getmainargs
__p___initenv
exit
_XcptFilter
_exit
??1type_info@@UAE@XZ
_snprintf
strchr
??2@YAPAXI@Z
wcstombs
??3@YAXPAX@Z
isdigit
atoi
calloc
free
_except_handler3
__CxxFrameHandler

kernel32

GetVersionExA
GetModuleHandleA
GetProcAddress
LoadLibraryA
GetTickCount
GetLastError
LockResource
GetModuleFileNameA
GetShortPathNameA
GetEnvironmentVariableA
lstrcpyA
lstrcatA
GetCurrentThread
GetFileAttributesA
GetCurrentProcess

mfc42

ord537
ord535
ord2818
ord540
ord2393
ord1567
ord800
ord268

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sxv
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ