752b1a7f3343db8803f57fb50fdecbc7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

752b1a7f3343db8803f57fb50fdecbc7_JaffaCakes118
Size

69KB
MD5

752b1a7f3343db8803f57fb50fdecbc7
SHA1

491f5b8c4ab88ad2723a24ea88db34c0a97764af
SHA256

1f99f23de920f3f3724321c937d84e204f0414f316b6c2a4dfd85a09a9b166c8
SHA512

a58d565e61fb39e78a7eca3cadfa8bed87375748f3155b862f86da4c67d19d5e69e226d6f5fc5de11b99001e5f9342900ad07848b594ffe233437150a2039c55
SSDEEP

1536:1o1i7f6OV4MzfjaOpu67Ju6H4LVpGa3NLwqqrXfrNPrzcfHI:C1i2IHpjYLVJtVqrXfrNPncw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
752b1a7f3343db8803f57fb50fdecbc7_JaffaCakes118

Files

752b1a7f3343db8803f57fb50fdecbc7_JaffaCakes118
.exe windows:1 windows x86 arch:x86

2c27591037ddb4ab073b4e851e22663d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
GetConsoleMode
GetConsoleScreenBufferInfo
CloseHandle
ReadConsoleA
ReadConsoleOutputA
ReadConsoleOutputW
ReadConsoleW
RtlUnwind
ScrollConsoleScreenBufferA
SetConsoleCursorInfo
SetConsoleCursorPosition
SetConsoleMode
SetConsoleTextAttribute
CreateFileA
WriteConsoleA
WriteConsoleOutputA
WriteConsoleOutputW
WriteConsoleW
lstrlenA
lstrlenW

user32

MessageBoxA

crtdll

_iob
_itoa
__GetMainArgs
_sleep
_stricmp
_strnicmp
toupper
abort
exit
ferror
fgetc
fputc
free
fwrite
localeconv
malloc
memcpy
memmove
memset
pow
raise
signal
strcat
strchr
strcmp
strtol
ungetc
wcslen
wctomb

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 692B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE