f1d099d1f81098120b785d1dc725bdce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f1d099d1f81098120b785d1dc725bdce_JaffaCakes118
Size

127KB
MD5

f1d099d1f81098120b785d1dc725bdce
SHA1

9bcab0fd01913cb12e9590032a0c543324213422
SHA256

eb0229b05cf844f8c0924695f89e069e464c6ab230d173500c2c775713de634e
SHA512

615138dab377049f309c38867e8d744bd5e27f2388ace10e4ac2eb7224c6c8319a1cc2baa971c32118b273489b91981eb6b5e64a981df676e1182e1251235150
SSDEEP

3072:cNJCUhE31Uk/Sb/VASY0d4e5jnhEpUqr:cNJZGlLoSS5l6pUq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1d099d1f81098120b785d1dc725bdce_JaffaCakes118

Files

f1d099d1f81098120b785d1dc725bdce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1a02a64c1a8745acbf0c19d8bd080b3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

CloseHandle
TerminateThread
FindFirstFileW
GetLastError
FindClose
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
ReadFile
WriteFile
Sleep
EnumResourceNamesA
GetLocalTime
LeaveCriticalSection
GetStartupInfoA
DeleteCriticalSection
CreateThread
SetFilePointer
ExitProcess
EnterCriticalSection
SetEndOfFile
InitializeCriticalSection
LoadLibraryA

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 740B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ