d1bfdc5ec2b7b69e4a2f66effc1ad3b5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1bfdc5ec2b7b69e4a2f66effc1ad3b5_JaffaCakes118
Size

432KB
MD5

d1bfdc5ec2b7b69e4a2f66effc1ad3b5
SHA1

e6ddd500a1a3c9d26e1ec64bfc37efb4660dd374
SHA256

5b684a8ff6bd72e72d6e9f2726b628e683d81100395c1c922003a29cad611695
SHA512

0f0f42f6627ffec2db1e811ebad5c48fe6682a8b8aeb82693710b0b6902be764f0ef2f9c5872c1e04f19995df344e4545e75488ad148337877e9380baf8aa0dd
SSDEEP

6144:IiGl9fdhJPMUMYVp3FiwFEPj5+uNhiMQngqo4aiE838gI8Xk:Iv1hJPM6fEL5vhXiE8Mw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1bfdc5ec2b7b69e4a2f66effc1ad3b5_JaffaCakes118

Files

d1bfdc5ec2b7b69e4a2f66effc1ad3b5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1872d09f33cb96df619fcaea44c37945

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetProcAddress
GetModuleHandleA
LockResource
LoadResource
SizeofResource
FindResourceA
GetModuleFileNameA
GetStartupInfoA

msvcrt

__CxxFrameHandler
_exit
_XcptFilter
exit
memset
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_acmdln

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 296KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE