27a65a7ef8eace36e40e47a3fad351bb_JaffaCakes118 | Triage

Sharing

General

Target

27a65a7ef8eace36e40e47a3fad351bb_JaffaCakes118
Size

164KB
MD5

27a65a7ef8eace36e40e47a3fad351bb
SHA1

0ebc090580f220f2ecb88756f560633c48e13de5
SHA256

46b256b4c377bbc487ecb648b5b6cd13dcd37b287f697ce015cf1955ecac42f0
SHA512

d4f0beab788c798bd0fc73c0f7c380577cf25b557e64da37b1be9aab995e953dbf131620e1980edfc500c107286b7f6511555242721ea0986c83835e163a0ea6
SSDEEP

3072:yhIC511kbPYhp6odk2ujQS1YQ93JYz1PpFEWzhx7P/5khferdbX4rM/BNMdV:yG7AhIodkxjQS1V1yz9pFdzf75khGcf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27a65a7ef8eace36e40e47a3fad351bb_JaffaCakes118

Files

27a65a7ef8eace36e40e47a3fad351bb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b37c80c4a6cf8c41775d82866c1e7e26

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

shlwapi

PathCombineW
PathFileExistsW

ole32

CoCreateInstance
CoTaskMemAlloc
CoRegisterClassObject
CoTaskMemRealloc
CoTaskMemFree
CoInitialize
CoUninitialize
CoRevokeClassObject
StringFromGUID2
StringFromCLSID

user32

CharUpperW
SendMessageA
DispatchMessageW
KillTimer
GetDC
CharNextW
PostThreadMessageW
GetMessageW
wsprintfW
SetTimer
TranslateMessage
UnregisterClassA

kernel32

FindClose
lstrcpyA
lstrcmpiW
GetLastError
GlobalFree
InitializeCriticalSection
GetProcessAffinityMask
GetTickCount
lstrcpyA
EnumResourceNamesW
LockResource
OutputDebugStringW
GetCPInfo
GlobalAlloc
lstrlenW
MultiByteToWideChar
FreeEnvironmentStringsW
WideCharToMultiByte
lstrcpyW
GetACP
GetModuleHandleW

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ