84d4eda1770263f23078d69efdf940aa_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

84d4eda1770263f23078d69efdf940aa_JaffaCakes118
Size

71KB
MD5

84d4eda1770263f23078d69efdf940aa
SHA1

2f4f5161195070c1a32bf6dc6f638f01310f80ac
SHA256

aaf1ed91e5c9025a1b7088f3ca853121426a42665d0681d648bf54202d44c71f
SHA512

09fb14ee03a0145a1ddb4a9f767adcf5f0474cf4496ed95cc606802ea8bef66f7da9ed496fdc56a5ee49ce3f277bd35036ee0eb705888fbb9f4118964fe09141
SSDEEP

1536:kRSB8/SOp64Hz1jeppu6BJu6rdD43DddVVoRuqR67s2wT5caf8rn:iSB8/rTxSlt8ddVaTR67srAb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84d4eda1770263f23078d69efdf940aa_JaffaCakes118

Files

84d4eda1770263f23078d69efdf940aa_JaffaCakes118
.exe windows:1 windows x86 arch:x86

9753a8da3e2a667a87c145d0dc19b96a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
GetConsoleMode
GetConsoleScreenBufferInfo
CloseHandle
ReadConsoleA
ReadConsoleOutputA
ReadConsoleOutputW
ReadConsoleW
RtlUnwind
ScrollConsoleScreenBufferA
SetConsoleCursorInfo
SetConsoleCursorPosition
SetConsoleMode
SetConsoleTextAttribute
CreateFileA
WriteConsoleA
WriteConsoleOutputA
WriteConsoleOutputW
WriteConsoleW
lstrlenA
lstrlenW

user32

MessageBoxA

crtdll

_getch
_iob
_itoa
__GetMainArgs
_stricmp
_strnicmp
toupper
abort
atof
exit
ferror
fgetc
fputc
free
fwrite
localeconv
malloc
memcpy
memmove
memset
pow
raise
signal
strcat
strchr
strcmp
strncmp
strtol
ungetc
wcslen
wctomb

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 692B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE