faff3395daaf8508548b8c033c811837_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

faff3395daaf8508548b8c033c811837_JaffaCakes118
Size

74KB
MD5

faff3395daaf8508548b8c033c811837
SHA1

3c749f6c87e25c11d89fca036b6f3683a8ab3130
SHA256

1fce215e6ad9bee7f81c05a7a3df621978edf83fecd281e14a265320fbe7d4d9
SHA512

33f349bd7f98e6febb648afe3b6ad2f5d57457f2a4eb876d38072655a571ae0bcf98bcdb3fd4ed5f566c308a779a4d37fc4160c1b16f13305a45575f0b8e7bd3
SSDEEP

1536:PYykyjS5doHadGyoBinEhnEtb3wYWGPF9hehSFnzwhgpdvTJfuRZggF:zkl5do6dnoBinEhnEFwNaFGhSFzwKpdQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
faff3395daaf8508548b8c033c811837_JaffaCakes118

Files

faff3395daaf8508548b8c033c811837_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9b92ef04845e8beabbd428016cd0ada4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memcpy
strlen
_adjust_fdiv
_XcptFilter
__p__commode
__getmainargs
fclose
memset
__set_app_type
_acmdln
fread
fopen
exit
malloc
strcmp
fprintf
__setusermatherr
_exit
_initterm
_except_handler3
fwrite
free
_onexit
sin

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE