0836612718ee60b306af6068ce7437c8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0836612718ee60b306af6068ce7437c8_JaffaCakes118
Size

283KB
MD5

0836612718ee60b306af6068ce7437c8
SHA1

fb10d4856fa53c7ae4f9eb8dbc9166cd8f0984f7
SHA256

3aaa9746f32037c4f68b3df14ebcc832cae9e4696d5630f5e7bdf973fa98727d
SHA512

3777462ef09c1ed951dcf895277b0fce5ca2c71dcf9e5687ad8bdada81fc6b60b285b640c6d21243fb7f79a560761345b2b8a1ca8e83ef3cd1f19287ea37cd3a
SSDEEP

6144:EepjhfagNLogiZ0X07/7NZbuumihmtTBlq6:EepjhfagVo90X0b7dmihmtTp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0836612718ee60b306af6068ce7437c8_JaffaCakes118

Files

0836612718ee60b306af6068ce7437c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4c8dd1393a38bd4139a9e1cbf21a9903

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
GetModuleHandleA
GetStartupInfoA

gdi32

DeleteEnhMetaFile
GetTextColor
GetMapMode
GetCharABCWidthsA
SetPaletteEntries
GetPixel
SetBoundsRect
CreateCompatibleDC
StretchDIBits

msvcrt

__CxxFrameHandler
_ftol
_CxxThrowException
_purecall
??2@YAPAXI@Z
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
__dllonexit
_onexit
??1type_info@@UAE@XZ
_controlfp
??3@YAXPAX@Z

Sections

.text
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ