c07a874d89f561288390126b1b01a32d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c07a874d89f561288390126b1b01a32d_JaffaCakes118
Size

76KB
MD5

c07a874d89f561288390126b1b01a32d
SHA1

6a848d955630301990b6ac24cb94c9bfb081d409
SHA256

97c8e0022113f842baee0c9450883c34396757d1ea3c4af86dc22c544c8a4f51
SHA512

8045ede6861e4b440d23ec50eef0b78357f433b61adea2c28000dc2b89b6f7c4da32abd96246027e09ad6ef16d60f899516e0fe4b34c3f68811698ef7c3f8f21
SSDEEP

1536:MQ4rdAmwp4zH4ecO1qyJJtDI7tL/n8YUBkjzjz:MQGAnw4eb1qaLytLEOzj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c07a874d89f561288390126b1b01a32d_JaffaCakes118

Files

c07a874d89f561288390126b1b01a32d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

024d1aaca1c127f767b90cc5c82e7dfd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memcpy
__p__fmode
calloc
fwrite
__getmainargs
_except_handler3
exit
fputs
_XcptFilter
strlen
_initterm
free
__setusermatherr
__p__commode
fclose
fopen
_adjust_fdiv
strrchr
fprintf
_strnicmp
sin
__set_app_type
_exit
strcmp
_onexit
_acmdln
malloc

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ