a6bd87106296e328496e7efb0b03cf86_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a6bd87106296e328496e7efb0b03cf86_JaffaCakes118
Size

84KB
MD5

a6bd87106296e328496e7efb0b03cf86
SHA1

a2bc1080d6a400754cbea25402e3a135e7b6d94e
SHA256

2225f0a7db834af5dc765f190fc57bb2fe82a34a4399223d0ac1db2eec929097
SHA512

ab3de7f4fdfd0f0ed4f8f1bf83f9f4aace1d6e64405abcee6904eff35743d73bb41df1720981c799d905cd29323128e8ba820429386dba7261be001204967873
SSDEEP

1536:u78v0q4rJCqX6wveOB3HTts2My4PrcoG4Vv/xPPkoOY5pN:n4rpX6BOHINDPG4BZnkoOYHN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6bd87106296e328496e7efb0b03cf86_JaffaCakes118

Files

a6bd87106296e328496e7efb0b03cf86_JaffaCakes118
.exe windows:5 windows x86 arch:x86

51f08c634d6e403d99a89ca6badc8ec6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
_adjust_fdiv
__p__commode
_XcptFilter
exit
_exit
__setusermatherr
_acmdln
__set_app_type
strlen
free
sin
strcmp
fprintf
__getmainargs
fclose
_onexit
_initterm
fwrite
_except_handler3
fopen

user32

GetDesktopWindow

kernel32

GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ