f5b935eb2c68e48b17df6cf7fb31ae0e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5b935eb2c68e48b17df6cf7fb31ae0e_JaffaCakes118
Size

44KB
MD5

f5b935eb2c68e48b17df6cf7fb31ae0e
SHA1

adafcdd059cf20ffa81d6bcc58014343723573ba
SHA256

2f200b7a8c627b4a4074dc94a3cabaa837c16b7ce203129abc7f809a909d9978
SHA512

f50f8991ce6679f5437c3c0d04274fa657882380e38ccbb3e94e8a7eadc64eeb84dd2973b1968ad08442ccaeafccbc706d447e6a9a71f17d9a6400ed11cb7e6e
SSDEEP

768:laLr15E64P3ojSRCBzSzygRJG+WIRR4bqDWT81GZigYkp9:C15E6G0eYIH4bqD28jU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5b935eb2c68e48b17df6cf7fb31ae0e_JaffaCakes118

Files

f5b935eb2c68e48b17df6cf7fb31ae0e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1a0b0f36dfaab1ae73e0af91841875bc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__mb_cur_max
fclose
strcat
sprintf
fopen
atoi
strcmp
strchr
getenv
exit
malloc
strlen
fprintf
_iob
ungetc
getc
free
abort
tolower
_pctype
printf
_isctype
strcpy
_exit
_XcptFilter
__p___initenv
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

btnpnae
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE