fc81e981fb6d9d986d6ef978752b8e07_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fc81e981fb6d9d986d6ef978752b8e07_JaffaCakes118
Size

70KB
MD5

fc81e981fb6d9d986d6ef978752b8e07
SHA1

4e21ab4b0e29fca888b4d73ebc3812975428d15a
SHA256

814ac8c300dc59080b3078fd99ba8e0fdab698a043a6be3c30ea69a7d6e67120
SHA512

c4af51187d4c2378f5c8d5204b4a5977162560456635e6e803a029d8e697a9e2d0660c24ea0cc23db8bbbaccd4f85116cda37a1232ae12f4f6e07730627d16b2
SSDEEP

1536:DI5tRxyEDADb5XMwOEx8SxkhXhUvWXt+qXpRgQXuyTxHUGZsmbg4p/1:EzRxjDMbpMwOW8SxSBNXpRg8uyTxHUGF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc81e981fb6d9d986d6ef978752b8e07_JaffaCakes118

Files

fc81e981fb6d9d986d6ef978752b8e07_JaffaCakes118
.exe windows:5 windows x86 arch:x86

11cbc2a908dd3022abc33e6a784c89e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_exit
_initterm
_adjust_fdiv
_iob
malloc
fclose
fwrite
__setusermatherr
strncpy
atexit
sin
_acmdln
__p__commode
strlen
_onexit
free
__set_app_type
fprintf
__getmainargs
fopen
_except_handler3
strcmp
_XcptFilter
exit

user32

GetDesktopWindow

kernel32

GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ