3c0b76b9212f1cbaf016d17037e3210c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c0b76b9212f1cbaf016d17037e3210c_JaffaCakes118
Size

113KB
MD5

3c0b76b9212f1cbaf016d17037e3210c
SHA1

791596b67ebcd73bed9ba528219c4b90ad0344f6
SHA256

7dad1106b129568b63f13c9ace49260aec9cc8c7139de126edeac728b7d0e78f
SHA512

34991f51a5876b9327eb82c0c5b5641de974b2601518a7c06f63ce335b863d313ec968d9ea04167d937efaa03da5de73b9b78407332d60ae868a972a0e894d6d
SSDEEP

3072:B8M5EGk+OngH0S/J59stXrTHlhcJLUWj9rH:BxSNS/itbTFubR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c0b76b9212f1cbaf016d17037e3210c_JaffaCakes118

Files

3c0b76b9212f1cbaf016d17037e3210c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6aec45b366c3a641b11a94ce506cdeb3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetThreadLocale
GetCommandLineA
VirtualFree
Sleep
ExitProcess

user32

CharNextA

winmm

timeSetEvent

comctl32

InitCommonControls

Sections

.text
Size: 512B - Virtual size: 218B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE