d74ecf1d559161646e562687347c72f6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d74ecf1d559161646e562687347c72f6_JaffaCakes118
Size

14KB
MD5

d74ecf1d559161646e562687347c72f6
SHA1

b5c2eca6cb48e09c0d1f9cd904b7d241d042843f
SHA256

6f6102eaf246ba6a06bd7a3029ff8aaccb515b3825d34f61965ff2a56cbbe12e
SHA512

3fe4f93cc9a0a99916ee9e18d904fd12ee436ff34f852535727400ee5873c9988ff8719f19e475a1f30088db2de1b4a0b50d2253559d26abb641a7a26ebd7c42
SSDEEP

384:g1YC3NgRBUYhRNOoq/5i6yPLXqqkqjaMJnN5rUYYJMM7pSC+64nT1akeemNQRwOB:sYC3NgRBUYhRNOoq/5i6yPLXqqkqjaMN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d74ecf1d559161646e562687347c72f6_JaffaCakes118

Files

d74ecf1d559161646e562687347c72f6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d46f76dc6a487d5ab172a18df0b227fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr71

strlen
sprintf
memset
strtok
_c_exit
_exit
_XcptFilter
_ismbblead
_cexit
_acmdln
_amsg_exit
strcmp
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
__dllonexit
_onexit
_controlfp
exit
strstr
__CxxFrameHandler
__getmainargs
strcat

kernel32

Sleep
GetModuleHandleA
GetProcAddress
GetStartupInfoA

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE