1677cf74eaa8ea347db3dd122c6fdee0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1677cf74eaa8ea347db3dd122c6fdee0_JaffaCakes118
Size

85KB
MD5

1677cf74eaa8ea347db3dd122c6fdee0
SHA1

1484c6b5aea0e15db9ad188d587691959b05f9b0
SHA256

874d4dc518c762dba54ea553ff73cf1a1ea2dbf43944491ab1eb30877de5c6bf
SHA512

4caeb2378cd28552aae3795e8cb8fd5165b4b8b7fb04840bd547ea87cb56c172b308ab0e74c331426c092daae09a934ae06d947d2887f6179b68d0dfbd018486
SSDEEP

1536:cgq/2jJCz8Q3YIY8LEX41LcBxt7oI6kAUQKjinJgzV:cgqtpvPGBTVp0JSV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1677cf74eaa8ea347db3dd122c6fdee0_JaffaCakes118

Files

1677cf74eaa8ea347db3dd122c6fdee0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

932ae1274b339999342c75bc03782993

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fopen
_initterm
fwrite
_adjust_fdiv
_XcptFilter
strcmp
__getmainargs
free
_acmdln
realloc
__setusermatherr
exit
__p__fmode
cos
_except_handler3
_exit
fclose
malloc
_cexit
fputc
__p__commode

kernel32

VirtualProtect
GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 598B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ