26f7707224b2ef20bc09c3bb110bbb55_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26f7707224b2ef20bc09c3bb110bbb55_JaffaCakes118
Size

67KB
MD5

26f7707224b2ef20bc09c3bb110bbb55
SHA1

7bd08b35c0caef21ae65e416c14ef4b0f11a115d
SHA256

446814d79f514f23a2a240b15d14b7bc08cc76cec43e66209833cbfe04a6f3ed
SHA512

da9b54b5204b413031fbd9d4d761c5d91ec065823f226891784bed4ad55bb3d4ab496e7eb8a01227928425da27185f5de686788b106935d01f593146b0f672d4
SSDEEP

1536:mWOO46BNM6g5Q+Z/Rzhl4O8Did1k8HgzzvJ1dt8:lOxmg5Q+0O8Di3wvJ1di

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26f7707224b2ef20bc09c3bb110bbb55_JaffaCakes118

Files

26f7707224b2ef20bc09c3bb110bbb55_JaffaCakes118
.exe windows:4 windows x86 arch:x86

705f52a5fc362864ab480b5194fec5b7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
__setusermatherr
_snprintf
_setmode
__getmainargs
_XcptFilter
_acmdln
strlen
_except_handler3
strcmp
strcpy
__dllonexit
_exit
signal
fwrite
_adjust_fdiv
fprintf
_initterm
_onexit
fclose
fopen
malloc
free
sin
exit
__p__commode
strncpy

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ