07178a81aa9dc4cc56ae5338fc1e75c1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07178a81aa9dc4cc56ae5338fc1e75c1_JaffaCakes118
Size

180KB
MD5

07178a81aa9dc4cc56ae5338fc1e75c1
SHA1

22b6cf8e5fcca7aa1588d2496ec53396fe3d4348
SHA256

680ce1f215b63dce413cd658c6534194b5b81a9b8f172211c58d55a10d10ca46
SHA512

bc9ad9a7f68c61028a48e786fcf0045191fd832c94c064fb1c6cbd92108b19b9112f7b74662b1b26e28702df5ec13fe3f6bd3bfe479caed45bd9cf8945d20f14
SSDEEP

3072:c5EwQBSA2yodBpshBgsqshsMukLUlICu8oQ9/mwWsFOCIZz4t0FH39L:c5EBsHDP9kcINeW739

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07178a81aa9dc4cc56ae5338fc1e75c1_JaffaCakes118

Files

07178a81aa9dc4cc56ae5338fc1e75c1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3de1c1068b4ea0a0b10c7a446ff679a6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
VirtualAlloc
VirtualQuery
QueryPerformanceCounter
GetSystemInfo
RtlUnwind
HeapValidate
HeapAlloc
GetProcessHeap
VirtualProtect
EnumResourceTypesA
FindFirstFileExA
SetUnhandledExceptionFilter
RaiseException
ExitProcess
IsBadReadPtr
HeapFree

oleacc

GetOleaccVersionInfo
CreateStdAccessibleObject

gdi32

GetStockObject

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ