0ea1d4fcfe8a09e7d69b1522b028f575_JaffaCakes118 | Triage

Sharing

General

Target

0ea1d4fcfe8a09e7d69b1522b028f575_JaffaCakes118
Size

39KB
MD5

0ea1d4fcfe8a09e7d69b1522b028f575
SHA1

3c9fd6b6afb78eff6977392faff565539831bd06
SHA256

c7f6c0173785ab08351b3872d466a02f61c1f3dd29d60c67c49f300c50c3ed37
SHA512

33d562fe4cf3d3cfe44cdfdd70cd2600a761d01abcb94c76d5c1c0eda25a11cb890dac12d0d6303acba9fef08ca35cc83d7c23872987f9c9ca424db8df59fd4d
SSDEEP

768:65GwhFr6L1flseXOnjyzkwoNzXT0E5ZlJ6AO/4d1cGoLF/yOIt:6UCrQ19seXOnuoZZzqAVPoBBIt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ea1d4fcfe8a09e7d69b1522b028f575_JaffaCakes118

Files

0ea1d4fcfe8a09e7d69b1522b028f575_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d6f20f81a223cc90bece848290f3e35c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ExitProcess
ExitThread
GetACP
GetCommandLineA
GetModuleHandleA
GetOEMCP
GetStartupInfoA
HeapAlloc
LocalAlloc
MultiByteToWideChar
RtlUnwind
SetLastError
SetUnhandledExceptionFilter
VirtualAlloc
VirtualFree
lstrcatA
lstrcmpiA
lstrlenA

msvcrt

_XcptFilter
__getmainargs
__p__commode
__set_app_type
_exit
exit
rand

ole32

CoInitialize
CoTaskMemFree
StringFromGUID2
CoCreateInstance

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ