cf8e46179c37054f39b2ec1c9d488a90_JaffaCakes118 | Triage

Sharing

General

Target

cf8e46179c37054f39b2ec1c9d488a90_JaffaCakes118
Size

42KB
MD5

cf8e46179c37054f39b2ec1c9d488a90
SHA1

2c1bbcdf389e33a1a81a17bae9deb2aab2e8b024
SHA256

96b1b2aecf6404c67a303d9617ec25b0606a39956dfc579ef9210f2b6016800c
SHA512

22e2120af5791a07f94e76d832817214303e7d5d5038c76fd3a7890d04a2589c375d8b5bdfdf2aa10e5634fce1cb9489fe343a329a6b0ecc1cf50e9f331f7223
SSDEEP

768:GfDeZVnVT28to7PiAymQiQ7uU9ato39wJ7L/E87EKStGZU1IcNGSL:UDerVT27KAymU99lNWQGm1IcISL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf8e46179c37054f39b2ec1c9d488a90_JaffaCakes118

Files

cf8e46179c37054f39b2ec1c9d488a90_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3d80df8ccc50a1626a9cdeecd9f51f63

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__fmode
__set_app_type
_except_handler3
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_controlfp
_exit

kernel32

UnlockFileEx
IsBadCodePtr
FlushConsoleInputBuffer
FindAtomA
CreateMutexA
GetSystemTimeAdjustment
GetModuleHandleA
GetStartupInfoA

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ