c794f920023b1b881bab2876c971ff03_JaffaCakes118 | Triage

Sharing

General

Target

c794f920023b1b881bab2876c971ff03_JaffaCakes118
Size

143KB
MD5

c794f920023b1b881bab2876c971ff03
SHA1

55ee87ecb93fe2723990f82229f46b9583f2a4c7
SHA256

a95adcf00a9e65692b6b9526e6f52383cbba793e4a60a1b298fefd45d6f39032
SHA512

2e8af9de8f7715c3febee2b83fed55e952ffab736f3c88ba1ceabee595140e8ff0420cded2139a79885fa42cda569aef2707a0bd8401e46c4fec55ddcda4f79d
SSDEEP

3072:2+c3Do0eJGajcPqITUuDZjuGXkHEpuDcMPuCCqX/h26RzyV8nEK:2+c3XPqYGGXxpqBNBq8EK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c794f920023b1b881bab2876c971ff03_JaffaCakes118

Files

c794f920023b1b881bab2876c971ff03_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3aed4b0d05b1b8d8365828afa6827abe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__fmode
__set_app_type
_except_handler3
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_controlfp
_exit

kernel32

GetModuleHandleA
LoadLibraryA
CreateToolhelp32Snapshot
FlushInstructionCache
GlobalFree
LeaveCriticalSection
GetDiskFreeSpaceA
GetStartupInfoA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ