66227ab35cd93ae7f91e16a4da0c42f5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66227ab35cd93ae7f91e16a4da0c42f5_JaffaCakes118
Size

5KB
MD5

66227ab35cd93ae7f91e16a4da0c42f5
SHA1

21ba74669be35d952e3d7ca959432b414876e0ce
SHA256

b68c298d2ebb50955b899b6b2c1b6924bec221f5f2c40a99f00e6ef33487200e
SHA512

7de30fbdf4b6f215a46fedbc10e87b0109fc5efd597a47307a264827c5be82a7f17c3b81e2ec67f19669f0d9d72fb27eaeadb4d754dca445e7119d43fc4db887
SSDEEP

96:7jl47Hje+DdOPtboynE8CaKlWChk+9uJZLwoqUweEPG:7h4Dje+D8P1oynN/rLAUwHO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66227ab35cd93ae7f91e16a4da0c42f5_JaffaCakes118

Files

66227ab35cd93ae7f91e16a4da0c42f5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2706cdc8094d6bdb573ba7f875ef8948

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
CloseHandle
ReadFile
GetFileSize
CreateFileA
lstrcatA
lstrcpyA
lstrcpynA
CreateDirectoryA
DeleteFileA
CopyFileA
CreateProcessA
RemoveDirectoryA
FindClose
FindNextFileA
FindFirstFileA
SetCurrentDirectoryA
lstrlenA
Sleep
GetTempPathA
lstrcmpiA
GetModuleFileNameA
GetModuleHandleA
GetStartupInfoA

user32

FindWindowA
PostMessageA

shell32

ShellExecuteA

msvcrt

_initterm
_controlfp
strchr
__p___argv
__p___argc
strrchr
_exit
_XcptFilter
exit
_acmdln
__getmainargs
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3

Sections

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE