14a2b8fdf312f0bc6175e7e5781d06ce_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14a2b8fdf312f0bc6175e7e5781d06ce_JaffaCakes118
Size

9KB
MD5

14a2b8fdf312f0bc6175e7e5781d06ce
SHA1

f603b2c324cf183c0746f0e19c896577286779d5
SHA256

e7c82f4c72486c2cd16efa30153efcc117ede568930ff375ab662459cae8fcfa
SHA512

4df085f2dd9587a0521d3f36034925fb460f4f75ef47bb2c977508863d84fb1ba680c301f03eb80e8006efb94e8d55966885d8af3338a546bdef121820503335
SSDEEP

192:J1wFVN/iucMz6Ym20l77IaocFSyDjv+2lHN23dF:J1qVNKq6Ym2InJoUrv+cH8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14a2b8fdf312f0bc6175e7e5781d06ce_JaffaCakes118

Files

14a2b8fdf312f0bc6175e7e5781d06ce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7f8650dfebaee3363d1e368ce4517742

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
SetFilePointer
CloseHandle
GetModuleFileNameA
lstrcpyA
lstrcatA
WriteFile
GetSystemDirectoryA
CreateFileA

advapi32

RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

shell32

SHGetSpecialFolderPathA
ShellExecuteA

ole32

CoCreateGuid

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE