5da5047a13d2db6c0d78103894567890_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5da5047a13d2db6c0d78103894567890_JaffaCakes118
Size

78KB
MD5

5da5047a13d2db6c0d78103894567890
SHA1

e9c261a1bba052f7007a63d605855097ac15de73
SHA256

02cabf26cfe1ffbf9a2cb8a4bd4a3b8c0a02f0f827be277cabb8ddfd5613b6ee
SHA512

e1c644d988d063fb5d290ebbb41f8a9243cd60080a69d84a0ed56809f03263cc1290bfa7d6bc095a7fb10c3d29c106e0aed10380ab2997d2dac353e1bf5a1662
SSDEEP

1536:jnmsvRl/1xPSSj2UQuJOG6gWndvBGWle4QXqlsK5qbsbkyx7MYSzlrFI6nTeRdFr:jnmspl/CSj2OJOG6FblnP0sbkyKYSzv0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5da5047a13d2db6c0d78103894567890_JaffaCakes118

Files

5da5047a13d2db6c0d78103894567890_JaffaCakes118
.exe windows:4 windows x86 arch:x86

48416bb359347c346c1f524c992602fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
memset
_onexit
__p__commode
__p__fmode
fclose
_adjust_fdiv
_exit
_except_handler3
fprintf
_initterm
_XcptFilter
_acmdln
strcmp
free
strlen
fwrite
fopen
sin
exit
memcpy
malloc
__getmainargs
fread
atexit
__setusermatherr
wcslen

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ