c2ac61f3b8a2765edb66a9ddecab6fea_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c2ac61f3b8a2765edb66a9ddecab6fea_JaffaCakes118
Size

265KB
MD5

c2ac61f3b8a2765edb66a9ddecab6fea
SHA1

54d81cbcc7d234254a3ebe11c4cab685800e7041
SHA256

208bebb3f360b3f5208588cb2d2d2eef53dd26c414618281833fa26d96305325
SHA512

901fd7bdd4bb90b2ce5fb921ea9e199c8dc33f2fc1b2b5c008f39ef1a918a369eef3037a039e02eaee34456b8431af10a46a03f4440708382d83cb4978e653eb
SSDEEP

6144:W5p/7tutTBj8m1h7CDovQPNnlRN/g5eNHmBejnLjoktmRq:ghutT15gcvWxlRy5aHZLjoE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2ac61f3b8a2765edb66a9ddecab6fea_JaffaCakes118

Files

c2ac61f3b8a2765edb66a9ddecab6fea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8ee9a89bdc2383a66ee388c8818a5944

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
GetModuleHandleA
GetStartupInfoA

gdi32

SetBrushOrgEx
DeleteDC
GetTextCharset
GetCharABCWidthsA
RestoreDC
SetBoundsRect
TextOutA
CreateCompatibleDC
CreateDCA
SetBitmapBits

msvcrt

__CxxFrameHandler
??2@YAPAXI@Z
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
??3@YAXPAX@Z
_except_handler3

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ