19873bb662f8a3d5d1affe3b20c27d7d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19873bb662f8a3d5d1affe3b20c27d7d_JaffaCakes118
Size

115KB
MD5

19873bb662f8a3d5d1affe3b20c27d7d
SHA1

5b2bb0d0fb4fd82b7c37cd97ab8516dc644fa87d
SHA256

064a8206ec120df1ccb78143b7431ee78d28dbf098337c8e0364f9535aa25f74
SHA512

530ec1dd7756689a348e2d5ec9b919cad8a5111fbf83c04d052b450c1a5386ad42004974aabd21d321ed145846637908185794def8c2f2d05eae4a9b6c03432f
SSDEEP

1536:2QQcXRUc9S9TwmIaimFPP+YREkxTONXjot1ykPN/bRG128k2okWPlxKAYr2tqBN8:Bbac89TjWoPhE2n3ak2paTE2cNvq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19873bb662f8a3d5d1affe3b20c27d7d_JaffaCakes118

Files

19873bb662f8a3d5d1affe3b20c27d7d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

82262b3d57e463fc4d82cb5b10adbca5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetModuleHandleA
FreeEnvironmentStringsW
CloseHandle
GetLastError
GetThreadLocale
FreeEnvironmentStringsA
GetProcAddress
VirtualAlloc
LoadLibraryA
GetEnvironmentStrings

user32

TranslateMessage
GetMessageA
DispatchMessageA

oleaut32

VarRound

ole32

CreateObjrefMoniker

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ