1277c9ca30d9d4d1075f2abf4e3af866_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1277c9ca30d9d4d1075f2abf4e3af866_JaffaCakes118
Size

136KB
MD5

1277c9ca30d9d4d1075f2abf4e3af866
SHA1

a7e490286be83080056140b6bc5c6e717ca89562
SHA256

ce21aa74ff7b476367fbf0354e1a12376305326ce2d5ebaa04a2bc606d81697e
SHA512

54e22d41ba2c40e17d95a85071fe2108fab7d32647b2a07cab72765bda9033701ff2d145965a69362e67980ff99c87e8dda010b182f5027d7114df25be11e461
SSDEEP

3072:UVLSyjURx5k+CKfADd6THgIx18UkHZzxsXfdlHE7qYFFb6:U1SyjeCKYDd6hT9kHNxafb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1277c9ca30d9d4d1075f2abf4e3af866_JaffaCakes118

Files

1277c9ca30d9d4d1075f2abf4e3af866_JaffaCakes118
.exe windows:1 windows x86 arch:x86

46903fc334f3553783374502debb1d62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
GetConsoleMode
GetConsoleScreenBufferInfo
CloseHandle
ReadConsoleA
ReadConsoleOutputA
ReadConsoleOutputW
ReadConsoleW
RtlUnwind
ScrollConsoleScreenBufferA
SetConsoleCursorInfo
SetConsoleCursorPosition
SetConsoleMode
SetConsoleTextAttribute
CreateFileA
WriteConsoleA
WriteConsoleOutputA
WriteConsoleOutputW
WriteConsoleW
lstrlenA
lstrlenW

user32

MessageBoxA

crtdll

_iob
_itoa
__GetMainArgs
_stricmp
_strnicmp
toupper
abort
exit
ferror
fgetc
fputc
free
fwrite
gets
localeconv
malloc
memcpy
memmove
memset
pow
raise
signal
strcat
strchr
strcmp
strncmp
strtol
ungetc
wcslen
wctomb

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 692B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE