277bd3e8cb560477bb1c8d58b9876444_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

277bd3e8cb560477bb1c8d58b9876444_JaffaCakes118
Size

78KB
MD5

277bd3e8cb560477bb1c8d58b9876444
SHA1

164daf610232c75432d9b4822f8f419c1f46a960
SHA256

8fae80cd0171b3910e60512d722d6e559a2946e15b29f4e88edd44cd4f46b6b8
SHA512

f6049116f328a84d20623a57bbc03a6d39d5ef8203c16a798eb944cdfb91cf8e701d99df8ee8d4bd7c6fb8696b0c72464a4d95167e4c6236804b6c38ba6b0b6c
SSDEEP

1536:Tyvl7q3Ehaal5w1HHt5Bp9wOsDvMeS5cElY33rDw4hQ:Gv03MwNHt5BqDMeS5W37Dw4hQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
277bd3e8cb560477bb1c8d58b9876444_JaffaCakes118

Files

277bd3e8cb560477bb1c8d58b9876444_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f1d13073904ee59e3264e787949111ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

sin
_onexit
malloc
strchr
fwrite
_snprintf
strrchr
_acmdln
_XcptFilter
__p__fmode
__p__commode
strlen
fclose
free
fopen
_except_handler3
__dllonexit
__getmainargs
_errno
_exit
abort
__set_app_type
_adjust_fdiv
__setusermatherr
fprintf
exit
_initterm
strcmp

user32

GetDesktopWindow

kernel32

GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ