2b8722365f785b0499df3b21dce1fe40_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b8722365f785b0499df3b21dce1fe40_JaffaCakes118
Size

157KB
MD5

2b8722365f785b0499df3b21dce1fe40
SHA1

6d89c8ca620f001950a46a7fd0e860c413221a70
SHA256

ce5d052abb1903efa9bf36fc36f223d9f36209343507a0cde4af20ad2485b751
SHA512

e7610f24f9fdabe4bc1feab689eeb1371b87da3735af273cfd15b3d7e78da298e0bf451ea56d80965fdcaf6e4a066042fa0511a31266812d537eccdf2a806891
SSDEEP

3072:IocX1al6+dZ3mLrIdUdcrXvBRZFaPu/165l8A7RYO6cDBCO53WSbmPD/5:I/1al1vmLrOXVF698A7R/6cDYK3WSbcT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b8722365f785b0499df3b21dce1fe40_JaffaCakes118

Files

2b8722365f785b0499df3b21dce1fe40_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98843ad68c271742e27c5259c82f876a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject

kernel32

FindFirstVolumeA
TlsFree
GetPriorityClass
ProcessIdToSessionId
EnumResourceTypesA
InitializeCriticalSection
TlsAlloc
GetStartupInfoA
TlsGetValue
GetFileType

user32

GetUpdateRgn
CreateWindowExW
RegisterClassExW
LoadCursorW
GetDC
GetWindowInfo
MessageBoxW
EndDialog

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.apexi
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ