3c8f37dbd31eea8ecde5742119504516_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c8f37dbd31eea8ecde5742119504516_JaffaCakes118
Size

24KB
MD5

3c8f37dbd31eea8ecde5742119504516
SHA1

58ce13811ec4669517a762c31423abc34d4c93ab
SHA256

3f8b68f3ba0f5a25028dc321a6acd58b27c761d741d73afaaf74d726abd50ba2
SHA512

8c29af02ae118bf8511827b7b24252a13262944fec5fa4e3989c44ed596ba0a6f94eb1e28da87cd8fe844928b6eceb36cf08b449dd5ea98bbd30f4bbc93b6a81
SSDEEP

384:4/3mo7NpHwGwzuHPqSK7nTUbWPIP/1zVuCQk091:YOzuvpK7ACQPdz6D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c8f37dbd31eea8ecde5742119504516_JaffaCakes118

Files

3c8f37dbd31eea8ecde5742119504516_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a135ded6789e662b78a79a4622f15a5e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetProcAddress
LoadLibraryA
CloseHandle
Process32Next
Process32First
CreateToolhelp32Snapshot
Sleep
WriteFile
CreateFileA
GetTempPathA
GetWindowsDirectoryA
GetModuleFileNameA
GetSystemDirectoryA
GetStartupInfoA
GetModuleHandleA

user32

MessageBoxA

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_strcmpi

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE