fd4e2fe6e23b6283f3e2e906efda01d3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd4e2fe6e23b6283f3e2e906efda01d3_JaffaCakes118
Size

257KB
MD5

fd4e2fe6e23b6283f3e2e906efda01d3
SHA1

334beab5f1df759074840481130f5951505f133f
SHA256

07e02442b76ad3b163e5b0467d1b55e676b546c2e798ebb5722f039a12f4bda2
SHA512

cc9849921219ee57b7c554d0d7474440e95aeee4fe73c7eaea15a17e578bad61b40e38b732db61d2a84bfedd4d43f45704fe8646f7dabc60ffa1a261e4a4262d
SSDEEP

6144:pX7c+eDG+5t4YEGz1hhzvVtzWUuYPWGewvvuGAmTmA4g5:pXo/IGj5VtaUuhwXuzSmVg5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd4e2fe6e23b6283f3e2e906efda01d3_JaffaCakes118

Files

fd4e2fe6e23b6283f3e2e906efda01d3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

46f265206108f5c4842d808019469fb4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

kernel32

GetModuleHandleA
GetProcAddress
VirtualAlloc
LoadLibraryA
GetFileTime
PurgeComm
GetSystemInfo
WritePrivateProfileStructA
LocalFree
CallNamedPipeA
GetStartupInfoA

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ