bccb4c3e40dc18446bed032aa20f84bb_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bccb4c3e40dc18446bed032aa20f84bb_JaffaCakes118
Size

183KB
MD5

bccb4c3e40dc18446bed032aa20f84bb
SHA1

d584ff6decebcc340c87c58377ebe89e830eeae4
SHA256

92188621d281f492f93d09c06d424fc8a67898f9d49a23c07bebd1f1ff4f49ae
SHA512

5fd742c1e43ba796562e4a21017508f9ae75c19abd061e46c4f76d03deb60179f3e1a75d5559c76c351bd030c9794cb3bf76c775bca24372f4da87c99a332490
SSDEEP

3072:krS/H3j5XpkdIneJtFDjkdirBa+H/3bWFj7bRzCg2qfqyqxBU/SFB:kgH3HMIn+sYr5HqFj7NzTLiyIBkc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bccb4c3e40dc18446bed032aa20f84bb_JaffaCakes118

Files

bccb4c3e40dc18446bed032aa20f84bb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e76489e5e8fb04e575fc22708aea5bc5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapReAlloc
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 836B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ