6858c372d6ad57d21470219c7b4cea01_JaffaCakes118 | Triage

Sharing

General

Target

6858c372d6ad57d21470219c7b4cea01_JaffaCakes118
Size

11KB
MD5

6858c372d6ad57d21470219c7b4cea01
SHA1

b4e7395b6f87e5d3fb6fbb12d44f3f1ad072b5a0
SHA256

95b9d0242c375757ecb2a9cb5537b25bb393067208d3f06b08092a396191d984
SHA512

47501a27e0f13e182a76b6e017de8377ba729fdfae233f2634f634af460c97bebc6d7abb72a05bbf58e37398a26973ee5438d1ed63336e392e8c557a0b1411dc
SSDEEP

192:IDbKtSIFTR5QYlNbXCOHiJwyxiP1oynf4Vmz1uW:IDQSlyNzlCJrxM1GEx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6858c372d6ad57d21470219c7b4cea01_JaffaCakes118

Files

6858c372d6ad57d21470219c7b4cea01_JaffaCakes118
.exe windows:4 windows x86 arch:x86

73b0245e90203b41f54b9c943517fa7f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
GlobalFree
GetModuleHandleA
GetStartupInfoA

msvcrt

strcat
strcpy
strcmp
_exit
_XcptFilter
exit
_acmdln
__getmainargs
strlen
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
memset
_initterm

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE