f017ff5c44e6dadd88f862a86a9bd88b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f017ff5c44e6dadd88f862a86a9bd88b_JaffaCakes118
Size

44KB
MD5

f017ff5c44e6dadd88f862a86a9bd88b
SHA1

88503ca60ee7b28787fc052074e0ac3c71e54877
SHA256

0779b4b88bc89e66cbf153df2ab92f90bc012d22e187fceb45580ad11f20d156
SHA512

9ce780bcaeb2e306ebce811d8821ad52b7b65d28bde52a056397998b77e6b1269a1af6c84baf1e4d6fd34cac5c5aded33922009f7b140f9209b772f266efc33c
SSDEEP

768:n4rgypXjSuY0cEKS+jfizzc1CTgCuNlCUSk760xglj1GXwYB6iUh6mmekWLjs3o6:nMgyNS0cEKBjfizXgtlC7k760uj1GAY9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f017ff5c44e6dadd88f862a86a9bd88b_JaffaCakes118

Files

f017ff5c44e6dadd88f862a86a9bd88b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

f0c51192786fef3344045e19c74cc60c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
GetCommandLineA
GetModuleHandleA
GetProcAddress
GetVersion
GetWindowsDirectoryA
RtlUnwind
SetUnhandledExceptionFilter
TerminateThread
lstrlenA

user32

CharUpperBuffA

crtdll

_itoa
__GetMainArgs
exit
raise
signal
strchr

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 728B - Virtual size: 728B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE