2deb0a270102487d2a447e3155d1566e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2deb0a270102487d2a447e3155d1566e_JaffaCakes118
Size

85KB
MD5

2deb0a270102487d2a447e3155d1566e
SHA1

b41e03b7844a275fe57fb625391e42d41cb9d866
SHA256

6aff8760b1138d393907e3876d858353fb93b47fa15a27384b1fb5ddb02270ea
SHA512

d77ef86b4057c89b653421999939229a8e20ee3ce0e91a1f775ff59f0bbf21a63455c8e5853f1de287a71b2a924a4341227e7b4e14977ca6cbf1e58787680366
SSDEEP

1536:sJLs/ZKUheJ/hqzc0OdlXjrwJAZk8bEO6W6eaL5HQcWfgEUlInBX3C6:sJLs/ZJsJ/KcjlXIJE6oq5wcWfgzlCBb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2deb0a270102487d2a447e3155d1566e_JaffaCakes118

Files

2deb0a270102487d2a447e3155d1566e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2bedd80ab7bb900f10c4e6ff0cd3a50b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__setusermatherr
fprintf
memset
_adjust_fdiv
_acmdln
strlen
sin
_XcptFilter
__p__commode
_exit
_onexit
atoi
malloc
_write
fwrite
__getmainargs
__p__environ
fopen
strcmp
_except_handler3
_initterm
fclose
free
signal
atexit
_stricmp
_cexit
exit
__set_app_type

user32

GetDesktopWindow

kernel32

GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ