0e84c6f715ec0c628c2a3b78dd9f1fbf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e84c6f715ec0c628c2a3b78dd9f1fbf_JaffaCakes118
Size

165KB
MD5

0e84c6f715ec0c628c2a3b78dd9f1fbf
SHA1

ccd82c7150c756d6545bc61f245b8f1890abe452
SHA256

e9ec429cefb5e2110c12b434ed7d93f104049409b7a64f883738d8d18c0a9d4e
SHA512

c714c7136a08a11ab12679a9efc3edbd1361d4f47f59c2a07d9004f000a9c60ecdc624cbdfba0735c6c6b3de0ec24be66f2a8ba70384e525c0c350f61293179d
SSDEEP

3072:BO6tCmEuG7LH0mXwXfbmShEFwDPcLMBe5phpEwoLT:BOuF27D0mgXSShE+NOphpcv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e84c6f715ec0c628c2a3b78dd9f1fbf_JaffaCakes118

Files

0e84c6f715ec0c628c2a3b78dd9f1fbf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3120d1f9979d9659786461af904d2218

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

crtdll

??2@YAPAXI@Z
malloc
strstr
_exit
_XcptFilter
exit
_acmdln_dll
_initterm
__GetMainArgs
_commode_dll
_fmode_dll
_global_unwind2
_local_unwind2

kernel32

GetSystemTime
ReadFile
CreateFileA
GetModuleFileNameA
GetModuleHandleA
GetCommandLineA
GetStartupInfoA

user32

MessageBoxA
GetDC

Sections

.text
Size: 1024B - Virtual size: 878B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 698B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ