5f960cfda8a40c236dbe2337c6f24c4b_JaffaCakes118

General

Target

5f960cfda8a40c236dbe2337c6f24c4b_JaffaCakes118
Size

36KB
MD5

5f960cfda8a40c236dbe2337c6f24c4b
SHA1

9dd758342ff05527f3a4973bed001ce2b0c4a142
SHA256

0580e94d365f1a6467b42bd75fb0cb135af21bd1317551b5541bbcf8416aaea4
SHA512

0fac630c0fee047226d7a98eb9fa4495a4552b9e8511ff30943fa413cff3efa753d8c45238aef9c22de52360917f9ac1ac165dd033f14db265f6ecf0aa2d3849
SSDEEP

768:akB9EuBee6VVLbV0GVVdlP0EbaiwRftn:akB9ExegVHVlDdlP0EbaiQln

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f960cfda8a40c236dbe2337c6f24c4b_JaffaCakes118

Files

5f960cfda8a40c236dbe2337c6f24c4b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

75586d7c877714a93b10376649b99e8d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygwin1

__getreent
__main
_ctype_
_fopen64
_impure_ptr
atoi
calloc
cygwin_internal
dll_crt0__FP11per_process
exit
fclose
fflush
fgets
fprintf
fputc
fputs
fread
free
fwrite
getenv
getopt
ioctl
malloc
memset
optarg
optind
perror
printf
putc
puts
realloc
sprintf
strcat
strchr
strcmp
strcpy
strdup
strlen
strncat
strncpy
strpbrk
tcgetattr
tcsetattr
ttyname
vfprintf

kernel32

GetModuleHandleA

cygncurses-8

_nc_basename
_nc_boolcodes
_nc_boolfnames
_nc_boolnames
_nc_doalloc
_nc_find_entry
_nc_first_name
_nc_get_hash_table
_nc_infotocap
_nc_is_abs_path
_nc_numcodes
_nc_numfnames
_nc_numnames
_nc_rootname
_nc_strcodes
_nc_strfnames
_nc_strnames
_nc_tic_expand
_nc_trim_sgr0
_nc_user_definable
_nc_warning
cur_term
curses_version
napms
ospeed
setupterm
tgetflag
tputs
cur_term
cur_term
cur_term
cur_term
cur_term
cur_term
cur_term
cur_term
cur_term
cur_term
ospeed
ospeed
ospeed
ospeed
ospeed
ospeed
_nc_user_definable
_nc_user_definable
_nc_user_definable
_nc_user_definable
_nc_user_definable
_nc_user_definable

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 880B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 22KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

75586d7c877714a93b10376649b99e8d

Headers

File Characteristics

Imports

cygwin1

kernel32

cygncurses-8

Sections

.text Size: 17KB - Virtual size: 17KB

.data Size: 512B - Virtual size: 112B

.rdata Size: 10KB - Virtual size: 10KB

.bss Size: - Virtual size: 880B

.idata Size: 22KB - Virtual size: 44KB

.text
Size: 17KB - Virtual size: 17KB

.data
Size: 512B - Virtual size: 112B

.rdata
Size: 10KB - Virtual size: 10KB

.bss
Size: - Virtual size: 880B

.idata
Size: 22KB - Virtual size: 44KB