16ce7500ed8459b97d776b9197421bfa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16ce7500ed8459b97d776b9197421bfa_JaffaCakes118
Size

87KB
MD5

16ce7500ed8459b97d776b9197421bfa
SHA1

1790cf461a31a94318b1fde2fd27950b14a72dec
SHA256

4fd0ff140036f6238621c9f385a040b39046700b4beae398647b8bf942484f31
SHA512

c97d61ccff8d5e0adb5a137c390ecf86ae1423721a6caf2ad2b662763224ca06099037587e2b028d7dc3673d96f48521472e1ddbe6e994adad573b523bd64c24
SSDEEP

1536:Vyzr4aOz7D+3zC0/E7uNR75942XXUUCFoTYw2LXCcMiU2ZexSg:V9ZvD+3//Yub75p1lTxueiXZexS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16ce7500ed8459b97d776b9197421bfa_JaffaCakes118

Files

16ce7500ed8459b97d776b9197421bfa_JaffaCakes118
.exe windows:5 windows x86 arch:x86

cddcb548d9144a99ccda750d17a4e25b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__setusermatherr
_onexit
_XcptFilter
__set_app_type
__p__environ
strlen
fwrite
__p__commode
_cexit
exit
fclose
malloc
fopen
_acmdln
_initterm
_except_handler3
sin
_exit
_write
_iob
strcmp
fprintf
__getmainargs
free
atexit
_adjust_fdiv

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kcyqpiw
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE