41afbc09d7bc3998842ab6d468beb06c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41afbc09d7bc3998842ab6d468beb06c_JaffaCakes118
Size

129KB
MD5

41afbc09d7bc3998842ab6d468beb06c
SHA1

686d8feb016b769d21b2d02dfe3fb82909a1c880
SHA256

8c909ba1ee08faebe53a6663f646b721f8d85c25dc16e5855d2fb68d2e4a1a53
SHA512

d84d92636ca46697c8dfc001d99421469a55cee58427e8dfb138c881c76092d2be66036d0bd44d7767ea8bdc3a184bce10e934022ec509ed7e12e8a086cbc480
SSDEEP

3072:iDbaJua/ZOO2KVvxfi8SPiZO26vWo7xfIwJ/k:i3aJYO2QvxfqPiZ7/ok

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41afbc09d7bc3998842ab6d468beb06c_JaffaCakes118

Files

41afbc09d7bc3998842ab6d468beb06c_JaffaCakes118
.exe windows:1 windows x86 arch:x86

1fc38a33c831bf687a9c9312f081baee

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
GetConsoleMode
GetConsoleScreenBufferInfo
CloseHandle
ReadConsoleA
ReadConsoleOutputA
ReadConsoleOutputW
ReadConsoleW
RtlUnwind
ScrollConsoleScreenBufferA
SetConsoleCursorInfo
SetConsoleCursorPosition
SetConsoleMode
SetConsoleTextAttribute
CreateFileA
WriteConsoleA
WriteConsoleOutputA
WriteConsoleOutputW
WriteConsoleW
lstrlenA
lstrlenW

user32

MessageBoxA

crtdll

_iob
_itoa
__GetMainArgs
_stricmp
_strnicmp
toupper
abort
exit
ferror
fgetc
fputc
free
fwrite
localeconv
malloc
memcpy
memmove
memset
pow
raise
signal
strcat
strchr
strcmp
strncmp
strtol
ungetc
wcslen
wctomb

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 692B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE