1a1519df5a8bf7dcecf2d29b7d6ad152_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1a1519df5a8bf7dcecf2d29b7d6ad152_JaffaCakes118
Size

81KB
MD5

1a1519df5a8bf7dcecf2d29b7d6ad152
SHA1

653ce9bbfa247b69293080a665f40b6c2e74dddc
SHA256

4895b9e9d4f942f78c19bb0d52fa58cc589cb0b617eaec9411ccbbeac36cb173
SHA512

afc6d73e18a385e11ee22c47b045e7edc14569ee87686397f0014d7e251ef2823bdaa2637833e042bbea6d915524c1356a2b6b09a9c708f4deba12182f4868b5
SSDEEP

1536:eoC1ha60sp90XJ5C3QuW4VvuMmQRQ3/0AEoE4f3zPwMYVRtFnfzgJ:eoCK6nbeJQ3QV4duta80k5f3zPwMYtF6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a1519df5a8bf7dcecf2d29b7d6ad152_JaffaCakes118

Files

1a1519df5a8bf7dcecf2d29b7d6ad152_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e814a6c88218dfd7ec5658e1686b41dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
__getmainargs
__set_app_type
free
strcmp
strncmp
exit
fprintf
__setusermatherr
_XcptFilter
_exit
_acmdln
strcpy
strlen
_except_handler3
fopen
fclose
sin
_initterm
_onexit
_adjust_fdiv
__p__commode
fwrite

user32

GetDesktopWindow

kernel32

GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ