0d5cdd3f8976223a153d91c78d58e41b_JaffaCakes118 | Triage

Sharing

General

Target

0d5cdd3f8976223a153d91c78d58e41b_JaffaCakes118
Size

255KB
MD5

0d5cdd3f8976223a153d91c78d58e41b
SHA1

6d66210d72612149091023b9ec5a14090e834092
SHA256

fcbcf52b9e03eabfee7822ac90b5524c55d65743cc014468b31da2936348323d
SHA512

7d0db95d7072ad757375f20c9736b219c9ee3e2e24c4754a0769453598b384e51c88d357b7313ad41ddbf5f67094572ea7de221725e130a910b1b584df74c46e
SSDEEP

6144:tc2N0zHEo+QXo471AfM80/cZyn9b9KJUp7GtijcZRK:tc2N05X3u080/Wu9b9mUp7GojcLK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d5cdd3f8976223a153d91c78d58e41b_JaffaCakes118

Files

0d5cdd3f8976223a153d91c78d58e41b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6a3d6584aa6b6e6472ffbae9d63f8581

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__fmode
__set_app_type
_except_handler3
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_controlfp
_exit

kernel32

GetModuleHandleA
SetProcessPriorityBoost
VirtualAllocEx
GetFileInformationByHandle
GetOverlappedResult
ReadConsoleInputA
GlobalReAlloc
GetStartupInfoA

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ