566ffcd51b7095baae85fd0b13412377_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

566ffcd51b7095baae85fd0b13412377_JaffaCakes118
Size

16KB
MD5

566ffcd51b7095baae85fd0b13412377
SHA1

e20365eeae16a0605b7836d69f7917e2cf8131ef
SHA256

3970ea26fe5696bc483446e8390102e6cd7739e446f07f34d263e7acb11f69b2
SHA512

32ea64b9ed82d9f443c0d06ef2353c44229ee9d0056bd9735a9968c130c2cec284507170149a4ca45c9de422193d666d1cf893d38529f4cdcddb6946370e5bd8
SSDEEP

384:PrvNNnSDuM7LMiKmAovmM7NDQt70YWgbURWjYwQgFHAS2:PbNNnSDuAQixOM7K8m4e2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
566ffcd51b7095baae85fd0b13412377_JaffaCakes118

Files

566ffcd51b7095baae85fd0b13412377_JaffaCakes118
.exe windows:4 windows x86 arch:x86

db277f0791c951abbedd687d9de0fc32

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
ExitProcess
GetModuleFileNameA
GetModuleHandleA
GlobalAlloc
GlobalLock
WriteFile
ReadFile
CloseHandle
SetFilePointer
CreateFileA
GetFileType
GetStartupInfoA
GetStdHandle
GetCommandLineA
SetUnhandledExceptionFilter

user32

MessageBoxA

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 264KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 627B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ