bdce9fb0e8e8e9e53feb3cc8e17c822e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdce9fb0e8e8e9e53feb3cc8e17c822e_JaffaCakes118
Size

41KB
MD5

bdce9fb0e8e8e9e53feb3cc8e17c822e
SHA1

d46507d394ad35c39e4a9781d6570d4ecd664176
SHA256

0e78e5ff2356026866f345a2d0a98684bcfc079f7430d3efe3aef498016f8237
SHA512

84abc6fdce92c7a464d58a37508c06e34c5d5096710fd761dc8b4e7200a13d73f1132a8e758ea0d65bec85c0741c4721891326f6d8192455eb5534f8ad5f90b1
SSDEEP

768:5etFyX4oav5dKJOOEQJmKyQhGNmRPCbQX/QysAcUcld:Kymd4OsJmK6mRaIeAncld

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bdce9fb0e8e8e9e53feb3cc8e17c822e_JaffaCakes118

Files

bdce9fb0e8e8e9e53feb3cc8e17c822e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d1a0f526ee394128e147c016a10bb302

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
FindResourceA
FreeResource
GetACP
GetCommandLineA
GetModuleHandleA
GetOEMCP
GetStartupInfoA
HeapAlloc
RaiseException
VirtualAlloc
VirtualFree

msvcrt

_wcsicmp
fprintf
isdigit
sscanf
wcscat
wcscpy

ole32

CLSIDFromString
CoCreateGuid
CoCreateInstance
CoGetMalloc
CoInitialize
CoTaskMemFree
CoUninitialize
StringFromCLSID
StringFromGUID2

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ