64f0521388739cb5fd16e1bea4708048_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64f0521388739cb5fd16e1bea4708048_JaffaCakes118
Size

69KB
MD5

64f0521388739cb5fd16e1bea4708048
SHA1

8d3ee1c26889900dd8e1cfede05ea9a35735a1ec
SHA256

986fe70e73cda3f2b9ad2e5676c0b4fae77da68df224c8c01fc969e7e86d79a5
SHA512

67b6ebb56acbe80b450ee5513b9dec1d721fb83ca834c2b73ddcb2db9b3da3d320e8fbc399893b5cc8522018f0bd943e097860d6823eb9502a396518a31d451f
SSDEEP

1536:BvB1aQFnEO9NOiGtcB4iGk1VdyM6Kq5Fnl972lkGt:BvBRJDYt1iGEPyMTqvnPqlh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64f0521388739cb5fd16e1bea4708048_JaffaCakes118

Files

64f0521388739cb5fd16e1bea4708048_JaffaCakes118
.exe windows:5 windows x86 arch:x86

60a057f5bd69ba5294fb60f4412b636f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memcpy
_acmdln
malloc
__p__environ
_exit
_adjust_fdiv
_onexit
_initterm
fputs
_except_handler3
fopen
strlen
sin
_write
__p__commode
__setusermatherr
free
memmove
__set_app_type
exit
fprintf
fwrite
_XcptFilter
__getmainargs
fclose
strcmp

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ