3ea394152369d9ed9cfdcd1f75aceeb4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ea394152369d9ed9cfdcd1f75aceeb4_JaffaCakes118
Size

95KB
MD5

3ea394152369d9ed9cfdcd1f75aceeb4
SHA1

e2ef3187bab35de49df6b6e694d129df900554b3
SHA256

a4a1649d84247774f1d461768d4a79e8b3b9f482fc0f9f95506136a4a685630e
SHA512

f4249f47030dea90a48212d49f11bde76f53e7cf8ef30d39ff9e6e974d8cffa0b569f33c969c5ab3dd63ace02826d69d4a72d44ddab24c03283f9ea07c65e6df
SSDEEP

1536:teTC/q+3q5oAfPtcy8hTPlJv504dd2bg6jXfvvzeYkMi89LuH1mVYZhufamFG5T5:tNSiq5oAfPCYNaZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ea394152369d9ed9cfdcd1f75aceeb4_JaffaCakes118

Files

3ea394152369d9ed9cfdcd1f75aceeb4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

06ece4283d084df66c3d10170316aea3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
ExitProcess
FindAtomA
FindResourceA
FreeLibrary
GetAtomNameA
GetProcAddress
GetProcessHeap
GetTickCount
HeapAlloc
HeapFree
IsBadReadPtr
LoadLibraryA
LoadResource
LockResource
SetUnhandledExceptionFilter
SizeofResource
Sleep
VirtualAlloc
VirtualFree
VirtualProtect

msvcrt

_stricmp
__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_onexit
_setmode
abort
atexit
free
malloc
memcpy
memset
printf
rand
realloc
signal
srand
strcmp

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 192B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE