c938fe732ae5574ad3b50d5d9ce14bf6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c938fe732ae5574ad3b50d5d9ce14bf6_JaffaCakes118
Size

66KB
MD5

c938fe732ae5574ad3b50d5d9ce14bf6
SHA1

4a34c82942e47ef64e0192ea58928a3847ac3538
SHA256

2f0084c8ffddb7a10e42193715413a96475381bf67dc979a88fca1bc360b3464
SHA512

5fa2d258078f5cef3b51fb59cecd714f509616369581184d4ef097beb2c4479e05b8f6b1e10edd20700ca76d624f30ffba8f99a6a384cd78b167b5b367de8ac6
SSDEEP

1536:1Oq7KT7cjQCyR9fAjM4Ss21AWnStO/PzYJ2Zhw:1Oq73QC24HHRmokbro

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c938fe732ae5574ad3b50d5d9ce14bf6_JaffaCakes118

Files

c938fe732ae5574ad3b50d5d9ce14bf6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7a51d28863af977fd9c16e9b39ae3a79

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr71

_ismbblead
_cexit
exit
_acmdln
_amsg_exit
__getmainargs
_initterm
__setusermatherr
_XcptFilter
__p__commode
__p__fmode
__set_app_type
_except_handler3
__dllonexit
_onexit
_controlfp
_exit
_adjust_fdiv
_c_exit

kernel32

GetModuleHandleA
GetStartupInfoA

Sections

.text
Size: 1024B - Virtual size: 842B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 718B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 63KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE