dc20e5d63c65f3cdaf5e2c7df44fc131_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc20e5d63c65f3cdaf5e2c7df44fc131_JaffaCakes118
Size

77KB
MD5

dc20e5d63c65f3cdaf5e2c7df44fc131
SHA1

488feeef4d5636070247b7afec8580d67311adb7
SHA256

c9ab3079bf8fda0dcfa6af972251830562390cab7ee845a435468e7a44571245
SHA512

e0f5ae56421bd7020fcbb1149d791f50c0e5e0dad7d0dabb2a2f870a4e151dc85236da1863e02b7a21a54bc5613a1bbb0be12d7f684078c9524be047b8f69b99
SSDEEP

1536:v3yhVj2elFdWf8yCA88mFrDd0coGdb4KGcv8zr:vQ1WkyCF/boGdbT6/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc20e5d63c65f3cdaf5e2c7df44fc131_JaffaCakes118

Files

dc20e5d63c65f3cdaf5e2c7df44fc131_JaffaCakes118
.exe windows:1 windows x86 arch:x86

0865c69e989d5fe4474828a15a3139de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
ReadFile
CloseHandle
GetStartupInfoA
GetModuleHandleA

user32

EndPaint
GetDC
BeginDeferWindowPos

msvcrt

_initterm
_exit
_XcptFilter
exit
_acmdln
__getmainargs
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 634B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 213KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ