609bde05705aefc59d7d86629ce61b46_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

609bde05705aefc59d7d86629ce61b46_JaffaCakes118
Size

36KB
MD5

609bde05705aefc59d7d86629ce61b46
SHA1

36edd8b3512ea5e22296c29b3c25695813c3d5b6
SHA256

af887aeb83623054e06135e073b43a0738fe113c7277dd20aa39492c6788c793
SHA512

e36d1e3c02b51f2a4f34e30eae7b73f732397b73ddab4624acc712609b61a5e844e096a8c4811cae367580871347b4640005bee1acbfee04990cd9557b27aa5d
SSDEEP

768:x3/fq7erwe0OK6RKT/I91ZK4C8UdOH9D5:JHiSwe46RAAT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
609bde05705aefc59d7d86629ce61b46_JaffaCakes118

Files

609bde05705aefc59d7d86629ce61b46_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b57e5c12eb9465053cc7cfe84fa47970

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
_except_handler3
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_controlfp
_exit

kernel32

GetModuleHandleA
GetProcAddress
VirtualAlloc
LoadLibraryA
DisconnectNamedPipe
GetStdHandle
SetConsoleCtrlHandler
SetTimeZoneInformation
GetStartupInfoA

Sections

.avx��
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE