442a75afdda1899c5ee7c6a5c1281499_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

442a75afdda1899c5ee7c6a5c1281499_JaffaCakes118
Size

49KB
MD5

442a75afdda1899c5ee7c6a5c1281499
SHA1

ef781b9486ed6640e36c050c114890cea4a80257
SHA256

a7956133ce37a46f58a21de1c8a67071e78a8e60c5f9de4e4d60dbaad2087fd9
SHA512

e13c37c6c7bd785d81011a813d17723a8a108de9d09a079a28e40e15081527dd4adf03c261918faa8a13c97290681604d4e0dea5f77943cfa9608b2300855c22
SSDEEP

768:NHgFyCTRrFdkKTjN7gMy8y1tAaFS+2DUPcgiQJfqrAd8VmPvITVRc20+RdJ2Dxf/:M3B7gGSth2DgcgifMPvITVm20+74xEPW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
442a75afdda1899c5ee7c6a5c1281499_JaffaCakes118

Files

442a75afdda1899c5ee7c6a5c1281499_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5612d26e0220df0c17828f53d27aea10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr80

_controlfp_s
_invoke_watson
_except_handler4_common
_amsg_exit
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
_crt_debugger_hook
__set_app_type
_encode_pointer
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
memset

Sections

DATA
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

r2rc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TEXT
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE