abdf1fc4245cfe2969d6b380b38d4940_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abdf1fc4245cfe2969d6b380b38d4940_JaffaCakes118
Size

38KB
MD5

abdf1fc4245cfe2969d6b380b38d4940
SHA1

75f2df0b723f86105e3d92bc4de93ebbda718a29
SHA256

aaf5e6f154fc16927d9bc23b6fc83854b8432e8eda964a80dd8add2ea367bc67
SHA512

f5b57543552afe96a4c351b95bc03f5b35d1af3f83e543c5b52aa66812887b4379b9c6cf50224806fa5f820b3f3506ffb308a0c94c758ff14c46e6916ae542e9
SSDEEP

768:/tWBov+FIU2n8gcauHgvxztYg9etE2ULPz0aSmQf8t0hJt:VWtFWn8gc3gvxhYgoo0EG86

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abdf1fc4245cfe2969d6b380b38d4940_JaffaCakes118

Files

abdf1fc4245cfe2969d6b380b38d4940_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2e35365a5926674354b8a06601b2b238

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CopyFileA
CreateMutexA
ExitProcess
FindResourceA
FreeResource
GetACP
GetCommandLineA
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetSystemDirectoryA
GetTimeFormatA
GetWindowsDirectoryA
LoadLibraryA
Module32Next
OutputDebugStringA
RaiseException
TlsGetValue
UnmapViewOfFile
VirtualAlloc
VirtualAllocEx
VirtualFreeEx
lstrcmpiA
lstrcpynA

msvcrt

__p__commode
__set_app_type
_except_handler3
fprintf
isdigit
__getmainargs

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ