235744c519cc9b45c97fa4be9ca404d1_JaffaCakes118 | Triage

Sharing

General

Target

235744c519cc9b45c97fa4be9ca404d1_JaffaCakes118
Size

71KB
MD5

235744c519cc9b45c97fa4be9ca404d1
SHA1

10056dd3efff79cd6c81398eb834edda5a893995
SHA256

40c04604112bd2f1557572e71a2f9ab6c329b45925d8796c3020f9ada2e2b480
SHA512

4b8514cfaa4171d35a88b790576b1f3eb3630cd0974b72a16577c1f599827946ddf4c59902ceb9ce161d51fdad653d7aebc6823568fe05ba073bb4768d24ca71
SSDEEP

1536:Qf28+kELX9bpwdc3hgC6NrChAvJzLzte0C6YoWDhHWggN05LGb:Qf28SJplj68hAvXf5oHWF05LG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
235744c519cc9b45c97fa4be9ca404d1_JaffaCakes118

Files

235744c519cc9b45c97fa4be9ca404d1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9504609383eb6983ae73ed136d91dd2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
strlen
atoi
_XcptFilter
strncpy
free
_acmdln
_adjust_fdiv
__getmainargs
fopen
__setusermatherr
_except_handler3
fprintf
_iob
strcmp
memmove
_exit
fclose
_initterm
malloc
exit
__p__commode
sin
fputs
fwrite
realloc
_onexit

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ