3df80a9b2bd7b35259f2aa6e8ad500f7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3df80a9b2bd7b35259f2aa6e8ad500f7_JaffaCakes118
Size

70KB
MD5

3df80a9b2bd7b35259f2aa6e8ad500f7
SHA1

ffcc34f56fa9d15fa7d113817b8076fdcb4c08b9
SHA256

2b6d9b7e72d6a3a9242caa5c55962d65dcebf042f1ae22834e28aab82feb9996
SHA512

3a6b48de25753ff9d2484badb8ed088efa41a0554f55f72695e520d74925e481a4d703c92c77d06adaa6102c7e177f6d2768df3c4f53cdc2ccace6796f7528a1
SSDEEP

1536:q5QuaZKGO6fYTpSJlNDrcvg+9AfivpVJAlnYDe5agQrk:qPawGlYFSRgY+yWpHARCe59Qrk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3df80a9b2bd7b35259f2aa6e8ad500f7_JaffaCakes118

Files

3df80a9b2bd7b35259f2aa6e8ad500f7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a9480aca62cdf598be76c52a1d8cce34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
malloc
_acmdln
strlen
_initterm
fprintf
sin
_adjust_fdiv
_onexit
signal
_exit
fopen
fclose
__p__commode
sprintf
_except_handler3
__setusermatherr
strcmp
free
fwrite
exit
__getmainargs
_XcptFilter

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ