19a7ee4d8ec1e890a0b540c7d468a775_JaffaCakes118 | Triage

Sharing

General

Target

19a7ee4d8ec1e890a0b540c7d468a775_JaffaCakes118
Size

278KB
MD5

19a7ee4d8ec1e890a0b540c7d468a775
SHA1

2e875b831292ac9407ba1e54f7dafe60a427b1d7
SHA256

3c111d0f5b1bf73923bcd6014f35dacf219bcca097043a65c04abe46ba50fcee
SHA512

4d108ce7fbf7f4eb76f1c8f783b5790f68a7916f25a74e2bea542ee8cbe81c3f6d3f859fff4cbd318bce48bb00c5de19f80d9856f6d0589c0275a0310d2ac2a7
SSDEEP

6144:DJukBeNsKCa6aT6MAS3OyEU4wEqwnhIPC9kjilMyBGt7KEXjR:RKz6a0PfIPSkjJqC7FXj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19a7ee4d8ec1e890a0b540c7d468a775_JaffaCakes118

Files

19a7ee4d8ec1e890a0b540c7d468a775_JaffaCakes118
.exe windows:4 windows x86 arch:x86

56be3450ccb553f236267360fea1ca75

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetIpAddrTable

kernel32

AddAtomA
WriteFile
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetStartupInfoA
UnhandledExceptionFilter
EnumResourceLanguagesA
GetEnvironmentStringsW
GetOEMCP
GetStringTypeExW
GetCPInfo
GetEnvironmentStrings
SetUnhandledExceptionFilter

user32

GetDlgItem
CreateWindowExW
SendMessageA
EnumChildWindows
IsWindow
DestroyWindow
GetWindowThreadProcessId

mprapi

MprConfigServerDisconnect
MprConfigServerConnect
MprConfigGetFriendlyName

shell32

SHGetFolderPathW

setupapi

CM_Get_Parent
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

newdev

UpdateDriverForPlugAndPlayDevicesW

Sections

.text
Size: 136KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ