fc5c729f6dedfc0778728c766db20dce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc5c729f6dedfc0778728c766db20dce_JaffaCakes118
Size

85KB
MD5

fc5c729f6dedfc0778728c766db20dce
SHA1

76debcb0c4f9dc26abc4c4f031ae5363eb603fe7
SHA256

1601af2e1bbfbb2fb7b0b9539778973ab003ef6ce51a93f098cefcf528fc721b
SHA512

d35136e3ce41b7ec108ffde71f510a66d09c2a51b136b998413214874b64ff4ad0e559c30642193098ca30a0483af33c7e39fa23d07e4292493ed2a4901a745e
SSDEEP

1536:ADnLNfbOhxrx7UbYZI1dwsutiwBKg0BPR34hltfc6HPGEL1TL8Y/Ac6HcT66vlmy:ALxfbOPRUbYZIhuiwcg0H3qvc6Hem1Tq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc5c729f6dedfc0778728c766db20dce_JaffaCakes118

Files

fc5c729f6dedfc0778728c766db20dce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

35ff1ee1e0567c88183a4f1c63f862b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetLastError
InterlockedIncrement
ReleaseMutex
CreateMutexA
SetUnhandledExceptionFilter
Sleep
TlsAlloc
TlsGetValue
TlsSetValue
WaitForSingleObject

msvcrt

_write
_fileno
_fstat
_isatty
_lseek
_open
_read
_close
_assert
_cexit
_errno
_fileno
_fmode
_fpreset
_HUGE
_iob
_setmode
__getmainargs
abort
atexit
exit
fclose
fflush
fprintf
fread
free
fseek
fwrite
getc
isspace
isupper
__p__environ
malloc
memchr
memcpy
memmove
signal
strcmp
strtol
strtoul
__set_app_type

Sections

.text
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE