320b2506cda9c033286786e1b40c517d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

320b2506cda9c033286786e1b40c517d_JaffaCakes118
Size

20KB
MD5

320b2506cda9c033286786e1b40c517d
SHA1

337ba0ce5189c61f98fcc0ac09dd7bc5214d8683
SHA256

dbeb8a1f3004b5b3e170c29a09ae5bad9771655ba4a69dc9e6439a9b51011e94
SHA512

c9d7e44b50a286a22b3afd52065d18b8e379c410ac893404b66f446afeb0558fee8504f4e915b86d2917294cdb22ea28d744f776b860d1e7279f57ed69c7520b
SSDEEP

384:2ZgX7s+Ba/g39VY1DBkG9yS+BB6HASNx0HWdI+krKRXda7AJpEkum:2Z4bBa/IzY1F9TyKAXII+KatIR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
320b2506cda9c033286786e1b40c517d_JaffaCakes118

Files

320b2506cda9c033286786e1b40c517d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

da1d2c0113c90fcbf52121dd950b34cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetBinaryTypeA
GetCommandLineA
GetConsoleCP
GetConsoleFontSize
CreatePipe
FindResourceA

msvcrt

_atodbl
__toascii
_adj_fprem
cosh
_chdir
strcmp

Sections

.text
Size: 13KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE