dc233e5358ec7975768a242c91ed63d4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc233e5358ec7975768a242c91ed63d4_JaffaCakes118
Size

79KB
MD5

dc233e5358ec7975768a242c91ed63d4
SHA1

a016f1101459588c77a943ab1cf9c35a2f8d7fcb
SHA256

4d55cee567bb8a852303d2e077844520f0988d4cf4f4d7410eb4ef3da4c55332
SHA512

e4a1f4a0c3078c35aca76198fa089133cbb4136d94feb5907ddb8a88e2cc01fe3d7118ae51c439c76d0f21375a2ae1194486737c48390d05d37fc6e1de7c9279
SSDEEP

1536:vctHJZBmNOBzBr5TiwAYSvOlOqOYJRmJxS7gINi6xKWVTzkv3MlwT3:vctHJ2OzBr0wV5xiJEzj5Vllwr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc233e5358ec7975768a242c91ed63d4_JaffaCakes118

Files

dc233e5358ec7975768a242c91ed63d4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a09bf15d44e89eea72ef97f4ce0e749e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler3
free
fwrite
fprintf
strcmp
_write
_initterm
getenv
_acmdln
__p__commode
__getmainargs
__set_app_type
_vsnprintf
_XcptFilter
_setmode
__setusermatherr
exit
_errno
strncpy
strlen
malloc
fopen
fclose
_adjust_fdiv
_onexit
_exit
sin

user32

GetDesktopWindow

kernel32

GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ