a2adc4128c6affec8712285cc144a5a2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2adc4128c6affec8712285cc144a5a2_JaffaCakes118
Size

83KB
MD5

a2adc4128c6affec8712285cc144a5a2
SHA1

a33b5a633da3b9c8af507aae8b75ffd985d256e9
SHA256

24e574f8af5ea02847da878dbab640b17f540d194ff64fc0d065a3afef31bc7c
SHA512

e864cc680a0358d848c9b41081fc156583562a04b0fbb9dd43b3d00a1d06b8c75aecd81fd8bbc5c0f69ac46605cdf29d3b5f2ff97c7424648138d31656dcd338
SSDEEP

1536:Oe9faFW7Ycd1hMvoFoxnXhUxQGI8UXewMSPuyo7Sk6hiii:zaFWXsoFoxnRcXI8xJfy2SkKi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2adc4128c6affec8712285cc144a5a2_JaffaCakes118

Files

a2adc4128c6affec8712285cc144a5a2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1258f5520bb8af9cc7bd296babb3d163

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler3
exit
__setusermatherr
strcmp
_exit
__getmainargs
_onexit
_adjust_fdiv
strlen
strncpy
__p__commode
_XcptFilter
fprintf
malloc
_acmdln
memmove
sin
free
fclose
_initterm
__set_app_type
fwrite
fopen

user32

GetDesktopWindow

kernel32

GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ