be38fb01e38bcb02a314694a152b29ac_JaffaCakes118 | Triage

Sharing

General

Target

be38fb01e38bcb02a314694a152b29ac_JaffaCakes118
Size

89KB
MD5

be38fb01e38bcb02a314694a152b29ac
SHA1

812530c17d27f376a157192c99cb10088e341980
SHA256

adda41a9622c8e5792d729cbafbd5e3f25c062ca1269d3f10fa2ed5869775f17
SHA512

f99ac7fdb8df6e6d9fdf02212f7188d8fd48ca8168c523b80b5fb5cd1294b77e10482d9f3d1be8734681688596e7e97d11da9adaed610ed50a63a7d6601e6ae6
SSDEEP

96:WNgqzaduzrMW8CO7mt7N4WXxajnhMqcAjPJnUmqFcEhffIqhn98MjODWalWFtm6/:DpArH5EhAUP+m5ze98rCal961oyD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be38fb01e38bcb02a314694a152b29ac_JaffaCakes118

Files

be38fb01e38bcb02a314694a152b29ac_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f442602bd7b10f29aab7aac6271dc1de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
FreeLibrary
LoadLibraryA
SetUnhandledExceptionFilter
Sleep
SetFilePointer
CreateMutexA
GetCommandLineA
GetCurrentThreadId
GetStartupInfoA
ReadFile
GetTempPathA
GetTickCount
FindResourceA
LoadResource
CreateFileA
FreeResource
GetSystemDirectoryA
GetFileTime
CloseHandle
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
SizeofResource
WriteFile
lstrlenA
MoveFileA
DeleteFileA
ExitProcess
GetLastError
GetModuleHandleA
GetProcAddress
ReleaseMutex

user32

PostThreadMessageA
GetInputState
wsprintfA
GetMessageA

msvcrt

_XcptFilter
_controlfp
_except_handler3
realloc
malloc
strchr
??3@YAXPAX@Z
??2@YAPAXI@Z
strstr
__CxxFrameHandler
_CxxThrowException
??1type_info@@UAE@XZ
_exit
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ