0a05e5936dc3a4da260c8f35b16873ec_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a05e5936dc3a4da260c8f35b16873ec_JaffaCakes118
Size

344KB
MD5

0a05e5936dc3a4da260c8f35b16873ec
SHA1

2c3b03bb6309b1da7b916b7bc3a9426c9e1d986c
SHA256

01de65b5b3859481793991fccd12ee455fff5b26e64f387135903ea4c5033e31
SHA512

e017b9e9b5af5b72ca20024ef970a5e1259c439a1673a4da48277791bfd85d83676da191baf52bc4df6adc98e7c877300447f3df8974924400cf963287900651
SSDEEP

6144:jXmp4jsF94WHJmDuCh7G3GY66RWXaqDY403SGdk8xHmESrRnhO4TfH:LmpZL4OCh7GWmWFY403SGdk8xHmLrdb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a05e5936dc3a4da260c8f35b16873ec_JaffaCakes118

Files

0a05e5936dc3a4da260c8f35b16873ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

584954ceba26de0b7cfea61b1341d22f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadLocale
GetFileSize
ReadFile
FreeEnvironmentStringsW
GetSystemTimeAsFileTime
GetFileType
HeapAlloc
HeapDestroy
UnhandledExceptionFilter
GetConsoleMode
GetCommandLineW
WaitForSingleObject
InitializeCriticalSection
GetStringTypeA
WideCharToMultiByte
SetUnhandledExceptionFilter
TlsGetValue
GetCurrentProcessId
GetSystemDefaultLCID
GetModuleHandleA
GetUserDefaultLCID
GetLastError
GetModuleHandleW
GetVersion
GetCurrentThread
GetCurrentProcess
GetTickCount
GetUserDefaultLangID
GetSystemDefaultLangID
GetProcessHeap
lstrlenA
GetCommandLineA
GetStartupInfoA

msvcrt

_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__dllonexit
_onexit
_exit
_strcmpi

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 328KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ