95f2a43617c8d4ecb3f27c463a63b6ce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

95f2a43617c8d4ecb3f27c463a63b6ce_JaffaCakes118
Size

352KB
MD5

95f2a43617c8d4ecb3f27c463a63b6ce
SHA1

942c88b649f4315ddc045efeaa8b44a4c732dfd3
SHA256

58df74bcdae05c274aa98ee222370705ace7b07f9c213658b5021059317a7c32
SHA512

3dec91502eda8b7994f1bcdb0094bfdfa58cfc4c0153bb1d8c50ea9b04c63e44cfa1465c51f3b47bc2f9d73f0570719f8924082c532870f120598a311c39de79
SSDEEP

3072:PfI0Ebf1VRmxbQ9sitooxj6Ibrq4evond6v9pCeh3H:PQFLjkpXimGVbeQAvTC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
95f2a43617c8d4ecb3f27c463a63b6ce_JaffaCakes118

Files

95f2a43617c8d4ecb3f27c463a63b6ce_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5233c32475a61311508568aef05f9b10

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrChrNW

user32

DdeConnect

setupapi

SetupDiDestroyDriverInfoList
SetupOpenInfFileA

avifil32

AVIStreamReadFormat

kernel32

GetNamedPipeClientProcessId
GetStringScripts
GetEnvironmentStrings
FreeConsole
GetEnvironmentStringsW
GetModuleHandleW
GetLogicalDrives
GetTimeZoneInformation

shell32

SHAddToRecentDocs

advapi32

PrivilegeCheck

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 746B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

c6J|L
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

K9s
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ