a00f701202e219f3e922d1d89eac9fdc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a00f701202e219f3e922d1d89eac9fdc_JaffaCakes118
Size

264KB
MD5

a00f701202e219f3e922d1d89eac9fdc
SHA1

40b1f3a3d752bf0a4d828855b5a447af15fd41e6
SHA256

88ab191c54a1d5e48afb98cdd16a948eaf9f2cc430902216e282bbbcb56d8232
SHA512

fae22cb337d6bca3cbcb7d4660b8476be20c2e9fe4c9191b5af3b93465fc39cc838d2c76c3f693b074a4af3cffe4d7dcc499cacc247c8abf92653eb0965a9cd2
SSDEEP

6144:LTDlGp0VB0H6xYb5khBk2uW4kLRF1VYPAspSPDCr:rQ0P0Rqd71V05ey

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a00f701202e219f3e922d1d89eac9fdc_JaffaCakes118

Files

a00f701202e219f3e922d1d89eac9fdc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7d99cfe6c9300ae33e2c770cb6520a16

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
CreateFileA
WriteConsoleW
GetLocaleInfoA
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
HeapSize
GetConsoleMode
GetConsoleCP
SetFilePointer
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
RtlUnwind
LoadLibraryA
InterlockedExchange
LCMapStringW
LCMapStringA
WriteFile
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetThreadLocale
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount

msvcrt

_initterm
_iob
pow
fprintf
exp
?terminate@@YAXXZ
free
_initterm
malloc
_adjust_fdiv
exit
_CIpow
_ftol
__CxxFrameHandler
_purecall
_except_handler3

msvfw32

ICInfo
ICOpen
ICSendMessage
ICClose
ICGetInfo

Sections

.text
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ