21c96f238eb0627d500063e44341c7c7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21c96f238eb0627d500063e44341c7c7_JaffaCakes118
Size

42KB
MD5

21c96f238eb0627d500063e44341c7c7
SHA1

3ae2839e85d1b30e817bd36bb621ec1921092027
SHA256

472c3c3b6eb33163a26664205f7ea4ffc3f51c66cb49ca6418229723b8571b69
SHA512

9ddc16b33a7b052c6f03bb751150adcf29493137eaeb8d049f3ba6f3d4ff7d9ebb9d3e0dbb66a0b6cebb8db394a25cdac8dc47f186772df52904a79fc801b15d
SSDEEP

768:mjl8Km5ka2wdeRjO1XMbMVbDQkFJop+55vc1Ur/0ih:mj1A2p81XMMQIm+DwUr//h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21c96f238eb0627d500063e44341c7c7_JaffaCakes118

Files

21c96f238eb0627d500063e44341c7c7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c71bccc5d80182f6600f488537f3edc2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceLanguagesW
ExitProcess
ExitThread
GetACP
GetCommandLineA
GetDateFormatA
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetVersion
HeapAlloc
LeaveCriticalSection
MultiByteToWideChar
SetLastError
SetUnhandledExceptionFilter
VirtualAlloc
VirtualFree
lstrcpyA

msvcrt

__getmainargs
__p__commode
__set_app_type
_except_handler3
_exit
exit
isdigit
sscanf

ole32

CoGetMalloc
CoInitialize
CoInitializeSecurity
CoTaskMemFree
CoCreateInstance

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ