14a9735e985f1c51f56c0d42ececc50c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14a9735e985f1c51f56c0d42ececc50c_JaffaCakes118
Size

55KB
MD5

14a9735e985f1c51f56c0d42ececc50c
SHA1

31cd4a935902ac9623e83e811869dd8042510abe
SHA256

7a91167bfe017f716ef3e53107e77c18d4ca2d957ca3f381f15df6ccec0f6416
SHA512

41f6510538f18b9ac23ee45cbc3b3dd4775c8ccd5aafb8ef273590febc3492f07aa0a08f987630004fb074c4f68140961889ea73e29299c7b10b29730595b76b
SSDEEP

768:PSApgg9WWkOQal3vM8BzLBZle+xFgCzQ5A1RtYsTUbkzk93lBdeGBU0SkkiVosxX:aAptGeNk8Bjlr04jaozil6GBGkfVoxm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14a9735e985f1c51f56c0d42ececc50c_JaffaCakes118

Files

14a9735e985f1c51f56c0d42ececc50c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

73bf6e079af791057680cd3e136c336f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExA

msvcrt

_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_exit
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
calloc
strcpy
_adjust_fdiv

kernel32

GetStartupInfoA
GetModuleHandleA

Sections

.rdata
Size: 1024B - Virtual size: 564B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ