2213d69eb25001833ec34a90e9a71f39_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2213d69eb25001833ec34a90e9a71f39_JaffaCakes118
Size

38KB
MD5

2213d69eb25001833ec34a90e9a71f39
SHA1

6ac28421b27570140e1971e1616a4410b425e0ba
SHA256

08ce6855a61c7e508247dad21a20a1c8122ee11c6f4bdfee32b3b9cd0c397412
SHA512

d68f1da16f262a860af34b9ebbb20ff5d29131991dbe44c23bcc2922951493e70c4d5b2fb10660bc4081a5ee816441bbb9f272b139465201769166b582bdffa0
SSDEEP

384:Di0dGPVYpQGQCN5QmlD6MSyyGg99SoEalrROpT4a7QAlB8RXM:DooQ6X+y3csFalrUT7j0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2213d69eb25001833ec34a90e9a71f39_JaffaCakes118

Files

2213d69eb25001833ec34a90e9a71f39_JaffaCakes118
.exe windows:4 windows x86 arch:x86

76bb162b91c2f0f39c22dc2df6415d84

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
QueryPerformanceCounter
HeapAlloc
GetPriorityClass
ConvertDefaultLocale
MoveFileA
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LoadLibraryA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
GetProcAddress
GetStringTypeW

user32

LoadBitmapA

comdlg32

ChooseFontA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE