82c8670711e11e3ced8ecb0f3c11130c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

82c8670711e11e3ced8ecb0f3c11130c_JaffaCakes118
Size

80KB
MD5

82c8670711e11e3ced8ecb0f3c11130c
SHA1

6c5f2452a7eda1e14b768039ed6c89008fa28606
SHA256

27068ab8f36068e238749449352f1b47a23be5ad1a7fd3ee73be640e0c697287
SHA512

a737832d3c642ca7b069825c1bbba01e5b88539fbcd007e8bf052c849770b1bd231035ce0fda6545a32090528ed5da67e085a67e6152a9af9bf9467d8e04b176
SSDEEP

1536:KycSI4x0e0ou7I7YM5HlNN3keIshnZyIBH/NXMXsLf5mkq5gkN39UZ1+gBzf:KdSmdoMwp3ke5hZ3H/1f5mrgkG+gBz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82c8670711e11e3ced8ecb0f3c11130c_JaffaCakes118

Files

82c8670711e11e3ced8ecb0f3c11130c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a0ac70e57c6fedb9a198002c500ac70

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

exit
__getmainargs
fprintf
_XcptFilter
_exit
__setusermatherr
strcmp
strlen
fclose
__p__commode
fopen
memmove
_onexit
free
malloc
_adjust_fdiv
sin
fputs
_except_handler3
__set_app_type
_initterm
_snprintf
fwrite
_acmdln

user32

GetDesktopWindow

kernel32

GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE