da4b8754dcebc3fbd6cb3a77b9872308_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da4b8754dcebc3fbd6cb3a77b9872308_JaffaCakes118
Size

28KB
MD5

da4b8754dcebc3fbd6cb3a77b9872308
SHA1

037527c50b4b0502395647296afe0ae1d3698645
SHA256

fc6fc5428a67d76e59bcd8f93b0ad5ca76942c88454089265789a4397450a980
SHA512

45c9defebc46791e8b0b75bc1bbb07957727fe6add25eed1c521e1ef825eb72ea347499d9afb2834770357cec28dc245e43348fb6002a56638522a445d859013
SSDEEP

768:D0/xsex6HhBNIOrnToIf1NPi/urbTgdKh:D0/xl8HhBNIOrnToIfrOunMd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da4b8754dcebc3fbd6cb3a77b9872308_JaffaCakes118

Files

da4b8754dcebc3fbd6cb3a77b9872308_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3844660472ecfc7590d6b184aa4a8378

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_onexit
__dllonexit
_controlfp
free

kernel32

GetStartupInfoA
GetModuleHandleA

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE