34aa735923c6e131df46851fbf601f79_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

34aa735923c6e131df46851fbf601f79_JaffaCakes118
Size

75KB
MD5

34aa735923c6e131df46851fbf601f79
SHA1

ed681802e4555dbac043c427fbcdd929d876e9aa
SHA256

81ca1eb4d1ae4ffc97aaa2901570677c7663405e77adee544601410dce38bade
SHA512

77b2f05db631e877857850c2e66d3d8dc8ea4ad1492a90005d37f7a14c746969bf3d05ced9940bfb0a7d858f791613d8efb7e8f09dce9dd033fe4e74ab3a0858
SSDEEP

1536:DncJIkMLr/hfYSpXC8aqAOY1BODGkO90HHco0tz0c4hp/uvVVCIAh:8sX/h3aCY1BDkO9IHcoKz0fv/KVVCIY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34aa735923c6e131df46851fbf601f79_JaffaCakes118

Files

34aa735923c6e131df46851fbf601f79_JaffaCakes118
.exe windows:5 windows x86 arch:x86

efb18f51d02f670deec1d7f883cdc31c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

calloc
wcslen
_exit
_acmdln
_initterm
__setusermatherr
free
__set_app_type
fwrite
_adjust_fdiv
malloc
_except_handler3
strcmp
__getmainargs
exit
_XcptFilter
__p__commode
_onexit
fclose
fprintf
strlen
sin
fopen

user32

GetDesktopWindow

kernel32

GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ