a9a0cdb3f5b2225ab98f1bf0632394ca_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a9a0cdb3f5b2225ab98f1bf0632394ca_JaffaCakes118
Size

55KB
MD5

a9a0cdb3f5b2225ab98f1bf0632394ca
SHA1

4c3fab65bff427414d17e0035439c9d3b9f98822
SHA256

fcef5f8d338bbb8162493f1355656c4b8a159df7579bd393f8dde5f8d18cc0ef
SHA512

278d790771a82752794efda17dd51d4387b0188c469b24e829c3cfe04b55ff327f6e4996ed76b9eab283c526e76d4eaa2e3ac37599f06d19f1a17541c32264a1
SSDEEP

768:KFrF18yIVBvJqVeasj9v6/EWdSbaNuJxRSVHp4QmzwKEZy7:K58XvJqMasj9y/mba4xRS1OwK6y7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9a0cdb3f5b2225ab98f1bf0632394ca_JaffaCakes118

Files

a9a0cdb3f5b2225ab98f1bf0632394ca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2efe63f4b04c40410ed2338515f9c9df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__fmode
__set_app_type
_except_handler3
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_controlfp
_exit

kernel32

LocalLock
HeapCompact
FlushInstructionCache
CreatePipe
LockResource
FindNextChangeNotification
GetModuleHandleA
GetStartupInfoA

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ