da1d848578b4b4c5307ac9142b6aee88_JaffaCakes118 | Triage

Sharing

General

Target

da1d848578b4b4c5307ac9142b6aee88_JaffaCakes118
Size

560KB
MD5

da1d848578b4b4c5307ac9142b6aee88
SHA1

ba5cfbb7cc835ba511525c4944586d0c87d8205a
SHA256

ff59c14305080b3eabf94c27d574e21ba0cdb91ea6199d9977fe93d32cebf660
SHA512

c0cfed5ed95d15b463ad4f537d89c8a217c2f0c7235805e2500d91410c5248d7da63a7ce89ec4b74b43df3d670e12f3a26a676113a4ac00e64a7f1b9b6279af3
SSDEEP

12288:pqfbpUuU7dclhtIKo8hKVj91CgoC3WL9icJTh40KBhtWLPrnk7yPtb3vJnVnpkB/:pqfbpUuU7dclhtIKo8hKVj91CgoC3yiJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da1d848578b4b4c5307ac9142b6aee88_JaffaCakes118

Files

da1d848578b4b4c5307ac9142b6aee88_JaffaCakes118
.exe windows:4 windows x86 arch:x86

73680449a5b925f95c1ef20ef992e6f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateMutexA
ExitProcess
GetLastError
InterlockedIncrement
ReleaseMutex
SetLastError
SetUnhandledExceptionFilter
Sleep
TlsAlloc
TlsGetValue
TlsSetValue
WaitForSingleObject

msvcrt

_access
_close
_fileno
_fstat
_isatty
_lseek
_open
_read
_write
_HUGE
__getmainargs
__p__environ
__set_app_type
_assert
_cexit
_errno
_fileno
_findclose
_findfirst
_findnext
_fmode
_fpreset
_iob
_pctype
_setmode
_stat
_stricmp
_strnicmp
_wcsicmp
abort
atexit
ctime
exit
fclose
fflush
fopen
fread
free
fseek
ftell
fwrite
getc
isdigit
isspace
malloc
memchr
memcpy
memmove
memset
printf
signal
sprintf
sscanf
strcat
strchr
strcmp
strcpy
strcspn
strncpy
strtol
strtoul
time
tolower

Sections

.text
Size: 340KB - Virtual size: 340KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE