0b25d518e5fe101a7213d0860f1c4d89_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b25d518e5fe101a7213d0860f1c4d89_JaffaCakes118
Size

110KB
MD5

0b25d518e5fe101a7213d0860f1c4d89
SHA1

de12c5f7117f83b47016e00c296e678de60e787e
SHA256

cb42ad6572fef7f296a46d7f129d523e88926789b36166ce4391b00e738cc5a0
SHA512

2c9cff9c9758b937231c9f4b43f09315d830dae41201a6248137d54901c11c91ca48b8b5cff1370b75b580f88f910bb72cd9d9940c1b113132c1d0241f146ebe
SSDEEP

3072:UIwHkl7Vi5jzNNvdHLqvjoe58x5WvdbnT09fiW/2yxB:UIwHi7Vi5H1LKgx5WjTCh/Lx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b25d518e5fe101a7213d0860f1c4d89_JaffaCakes118

Files

0b25d518e5fe101a7213d0860f1c4d89_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0a91a880e12bea2f28c8f38bafef034a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

DestroyWindow

gdi32

SetBkColor

ole32

CreateStreamOnHGlobal

oleaut32

OleLoadPicture

winmm

waveOutWrite

Sections

.text
Size: 103KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE