76f86a39b9402c5c075790c1d9506576_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76f86a39b9402c5c075790c1d9506576_JaffaCakes118
Size

75KB
MD5

76f86a39b9402c5c075790c1d9506576
SHA1

4f48af6f0fdf08099802535c892b763152c8fa1e
SHA256

56f53d12a4ddc8157016f366a93f197bf374f06376b1cfc72097f53d132b9268
SHA512

70c22318a98bf6bf474147b591466548bfcb26ca12f71c271792dd94b7c3dc240b47f3c88ce921b50b80f329df0e2c624a489f72e4212a57b9743aaf27cd5a68
SSDEEP

1536:5y03orwe+Y7N0ADmlddyQ5UkxswtWo7hO4Xx3y3xr70zFz1:5y03KFXmL/dyQCkjtWodB3KrAzFz1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76f86a39b9402c5c075790c1d9506576_JaffaCakes118

Files

76f86a39b9402c5c075790c1d9506576_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2d90c56e9df59c300dafa186c5ed323c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strchr
_XcptFilter
fprintf
_vsnprintf
strcmp
__setusermatherr
fopen
free
exit
__getmainargs
sin
_except_handler3
__set_app_type
realloc
_onexit
fwrite
_adjust_fdiv
malloc
_acmdln
_initterm
__p__commode
fclose
_stricmp
memmove
strlen
_exit
strcpy
_strnicmp

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ