2bddbfe5d65af7d4f306aca93aea611d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2bddbfe5d65af7d4f306aca93aea611d_JaffaCakes118
Size

190KB
MD5

2bddbfe5d65af7d4f306aca93aea611d
SHA1

f5ce9cfe9c8a9e8c193b6979dacd55501447db2b
SHA256

bca4591bcc5404f6c402fa3a33c1819fa514724e08af22a17681751e3dcc6302
SHA512

73d20ea666be025963dc12f2ba3c1dc7939cff8cf587fc9bf25b4a3f804fd25ec40469975360b4bccedb0e246d9e5f4f70c91c0315128b1c05b090c47a5632e1
SSDEEP

3072:aI7vh4kRjq8yoqyjskg/22BAMCXw9nCt8TuM1O9Qh93qR/+KLpo7DRiJPwF+2SxK:aIekRjqPoqytgRBAZXwryM1xh9MGKLp2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bddbfe5d65af7d4f306aca93aea611d_JaffaCakes118

Files

2bddbfe5d65af7d4f306aca93aea611d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

59920d66c0088a5ca7ab94aeda45f027

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime
timeSetEvent

kernel32

GetStringTypeW
QueryPerformanceCounter
BeginUpdateResourceW
GetProcessHeap
GetFileType
GetVersionExA
GetCommandLineA
GetStringTypeA
UnhandledExceptionFilter
EnumResourceTypesW
HeapAlloc
GetShortPathNameW
HeapFree
GetStartupInfoA
GetFullPathNameW
InterlockedIncrement
ExitThread
WriteConsoleW
GetLocaleInfoA
GetStdHandle

ole32

OleTranslateAccelerator
CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree
CoTaskMemRealloc

gdiplus

GdipCloneImage

Sections

.text
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ