f9cb675fca68096709fe64ae7a439701_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9cb675fca68096709fe64ae7a439701_JaffaCakes118
Size

74KB
MD5

f9cb675fca68096709fe64ae7a439701
SHA1

8d30f794059d200ae1927a633d10ffb4c6dbd7a6
SHA256

b363e5b10e9ed004cc4dc000999d61e5b6d9f98a1bdb277593252e0cb288e407
SHA512

e8993664009eeb40ef7fbd2c0687c40fc4c64b5c2f44c3a771c7887f89d606f9b4cc6dfb44cea3f373d31fb46f0ffbd833550484b43ffd746595325dbf74f500
SSDEEP

1536:avEdOiLZUVOR0/k4RBWZ3Cmlr+hRAXeNv5VqcmiqpA8n0zmmKh3iInsn3UcAi:motC/k6e3CmN+75vmfCQ0zrE3iF3UcX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f9cb675fca68096709fe64ae7a439701_JaffaCakes118

Files

f9cb675fca68096709fe64ae7a439701_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd67d5e1b242701c786a158ecf4788dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
_acmdln
free
_adjust_fdiv
fopen
__p__commode
_XcptFilter
_exit
strcmp
__set_app_type
fprintf
_onexit
fwrite
__setusermatherr
fclose
strlen
exit
malloc
memmove
_except_handler3
sin
__getmainargs
fread

user32

GetDesktopWindow

kernel32

GetModuleHandleW
GetStartupInfoA

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ