24e1dca5305b8ed83c92df9052e32bcf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24e1dca5305b8ed83c92df9052e32bcf_JaffaCakes118
Size

29KB
MD5

24e1dca5305b8ed83c92df9052e32bcf
SHA1

6af06334a9bd40ba579dfb7e54b05b992a74616d
SHA256

7e403aceabe93b1c7605a478f42859e002936d4d3c02a926e174983697f92f66
SHA512

8889f08812e2cc68356ffdb5c26a0297ab89cb5d35ea9fa757755254c7d78baa00b972a8a14d641b75a08acc931bbec61afae761fe0b04c0f7e96cbb9bdce910
SSDEEP

384:nOQjl18A+hb26Z6rnDsklayGZAZSDJs1JkBXDrbVvcYARq1blTbENzMM:nOQ3Ab26Z2nDs9ywNJxV0YARWlTgzz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24e1dca5305b8ed83c92df9052e32bcf_JaffaCakes118

Files

24e1dca5305b8ed83c92df9052e32bcf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8406b2b99bed0fe919e6c325877f5e34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringA
GetPrivateProfileIntA
GetTickCount
SetUnhandledExceptionFilter
GetProcAddress
CreateFileA
GetModuleFileNameA
GetModuleHandleA
OutputDebugStringA
CloseHandle
LoadLibraryA
FreeLibrary
GetStartupInfoA

ole32

CoInitialize
CoUninitialize

msvcrt

_exit
_mbsicmp
sprintf
??2@YAPAXI@Z
strcat
rename
_snprintf
__CxxFrameHandler
_vsnprintf
_mbsrchr
free
strlen
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ