bd86b17b0192d68bea8d18a7ac115264_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd86b17b0192d68bea8d18a7ac115264_JaffaCakes118
Size

21KB
MD5

bd86b17b0192d68bea8d18a7ac115264
SHA1

48e8535c755ca275fa96cb8e003c7cc66fde6e64
SHA256

10021d3e25338a159f4c3285bbf63601f739b9f7319022e4123ab96bf47b10ed
SHA512

f6a15aa5c053e064afd982ed3dd5179fece345a2ef0e6fcb413a4b47e8620a7986208a2938d9c3810de9bdc5fb648650763a0d69930a9f54bf2bc67f5f27308d
SSDEEP

384:zl8f8DIS2LJwq1vPsz0Y640g19m9cPh51EdrczK+:zlk8DIScJwMpYmW9m9cPh51Irc/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd86b17b0192d68bea8d18a7ac115264_JaffaCakes118

Files

bd86b17b0192d68bea8d18a7ac115264_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b32e6a9eca5ad2c23a3bfa377b62882b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
SetEvent
GetTickCount
GetModuleHandleA
GetStartupInfoA
OpenEventA
Sleep
GetVersionExA

user32

CreateWindowExA
RegisterClassA
LoadIconA
UpdateWindow
LoadCursorA
ShowWindow

gdi32

GetStockObject

msvcrt

__setusermatherr
_controlfp
malloc
_except_handler3
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
_exit
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE