125a53df22e9f6099658dc83b250c2b6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

125a53df22e9f6099658dc83b250c2b6_JaffaCakes118
Size

74KB
MD5

125a53df22e9f6099658dc83b250c2b6
SHA1

435e9945ed1c350624dfd4aff63d6ba37bab2597
SHA256

504065716b2130fb53fe9766d11ba2bfdb24ecfec2274a5892c51f6f9123d5f2
SHA512

32b9aed20adfe808980d7b1cddcbff4db54201b577fb56320aa4bcac8f99aaff470852b2e2ef7e539eef48957d5e7d35c61ed828051284ced20a942c5f0abb27
SSDEEP

1536:qrAvvDHzEe8HMjs8OQ/7z65UR6DuJzlY689hhpnw1EBmV//4qDGGeaG5985Pg:qrUv87MQ85/7O5jDml5wXFw34HGRG59d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
125a53df22e9f6099658dc83b250c2b6_JaffaCakes118

Files

125a53df22e9f6099658dc83b250c2b6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2c7bf255692e845e6787f5fa1baf1489

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strlen
fopen
__setusermatherr
_adjust_fdiv
exit
malloc
sin
fclose
__p__commode
fwrite
_initterm
_XcptFilter
_exit
_except_handler3
_onexit
memset
fprintf
strcmp
__getmainargs
memcpy
fread
_acmdln
__set_app_type
free

user32

GetDesktopWindow

kernel32

GetStartupInfoA
GetModuleHandleW

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE