2ac35cfb0bdfd39c7bc9e6da0581f25f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ac35cfb0bdfd39c7bc9e6da0581f25f_JaffaCakes118
Size

20KB
MD5

2ac35cfb0bdfd39c7bc9e6da0581f25f
SHA1

d00239d4566acefd8b44350eeb37e6f2cbac999b
SHA256

3492df115f95d4637e0bdd513865dd014fb31a37359136b203fbabe3ae181a20
SHA512

37438605c5cf3e5921807998dcb5a788ffbda61b987d065a287d26eb4da2d2a12bc1f2a84a7dc082c2e50eff3bfc4dc720e835a1908930cb0f150b3e0c63fc14
SSDEEP

384:n06aI+aI4LxMBhCx5X6EIyuoufG5C4mH+WsMM:06aIFbtM3ZEIyVF5Y9v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ac35cfb0bdfd39c7bc9e6da0581f25f_JaffaCakes118

Files

2ac35cfb0bdfd39c7bc9e6da0581f25f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9ec067c35fbf0a46eb477ee8f894dbef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockResource
LoadResource
SizeofResource
FindResourceA
GetSystemDirectoryA
GlobalAlloc
CopyFileA
GetModuleFileNameA
ExitProcess
CreateFileA
WriteFile
CloseHandle
FreeResource
LoadLibraryA

advapi32

RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

msvcrt

sprintf
_exit
_XcptFilter
exit
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ