be355bf0c211c57bc75185355bcbdee5_JaffaCakes118 | Triage

Sharing

General

Target

be355bf0c211c57bc75185355bcbdee5_JaffaCakes118
Size

148KB
MD5

be355bf0c211c57bc75185355bcbdee5
SHA1

a2b64c0fce6f72511bfd65bab3af4f02927bdbf2
SHA256

a42046001a5acb2d20a975f1bdedb98469fa4b0d39b2332516a8883f810ebdc7
SHA512

de32980c2b25fa27f2f881454e5e3e6f34daf484513cbf57df6bac87d8b9b8e7897991602ff59ec950ffa5584c77dbc88f2dbba69bbfb0bffc8952fca84370f6
SSDEEP

3072:7GBnQzIRBHE16VZqt988kA9RNwob4Gc2hnAMhNH9gR:mnQcRlokZ45koTw52BAUpqR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be355bf0c211c57bc75185355bcbdee5_JaffaCakes118

Files

be355bf0c211c57bc75185355bcbdee5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3eafbefb320ed943e8d2b2b2b7263dba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__fmode
__set_app_type
_except_handler3
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_controlfp
_exit

kernel32

GetModuleHandleA
GetProcAddress
VirtualAlloc
LoadLibraryA
LocalAlloc
SetThreadExecutionState
FindResourceA
GetStartupInfoA

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ