0595e0e18090d7df8693c6ae5706155b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0595e0e18090d7df8693c6ae5706155b_JaffaCakes118
Size

48KB
MD5

0595e0e18090d7df8693c6ae5706155b
SHA1

736b10d18b64d870b0912c53c6ac3eff0d674e41
SHA256

e78beffa6c66fe079f38baa6e8bd57d847d2c80465876c9c547f647595205844
SHA512

57492479055a5885ac9f2474ce1c19c7e0d63e937185fb43cd34fef6d3ec645940347cc1b10959a1c179f718142d83b7651c0cac3f998ddace59c1cd7a78eb9d
SSDEEP

768:1AJURoC8zKKXjiyZIojGH9mWK5Fl1Bhkzrz8WH3TMqWNU+K74FV2:urDzKKGqqdmH5LS8CDMqqU+lV2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0595e0e18090d7df8693c6ae5706155b_JaffaCakes118

Files

0595e0e18090d7df8693c6ae5706155b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2b1ea039890bc2447a42665bcbf82343

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

kernel32

ExitProcess
GetModuleHandleA
GetProcAddress
SetUnhandledExceptionFilter

msvcrt

_fstat
__getmainargs
__p__environ
__p__fmode
__set_app_type
_cexit
_iob
_onexit
_setmode
atexit
exit
fclose
fgetc
fopen
fread
free
fwrite
malloc
memcpy
memset
perror
printf
puts
setbuf
signal
sprintf
strcpy
strlen

user32

GetForegroundWindow
GetWindowLongA

comdlg32

GetOpenFileNameA

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE