2e52eec27f50d4829d5a8826020dec10_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e52eec27f50d4829d5a8826020dec10_JaffaCakes118
Size

178KB
MD5

2e52eec27f50d4829d5a8826020dec10
SHA1

35ef74b8866280410f791b3c31b60443f0d32714
SHA256

9ae13cf8747c59be13f5952ece0d5f8fb3b4ff31e5e801f64841b2bc645103cd
SHA512

9017663bb698574967a3c1cc21448f3676db5117b1115f6b6b0c990257014348cef128ec599c250311bf0a62f0fc4d5bf465a32bdc726bb6b10143a28fc490e7
SSDEEP

3072:pBWiHPGlH15ZZQzn7/0JEA5heWDekMOm0kSAtOpGsNRdyLEoYfp2qGV5SUrI:uiHPUHYz7/0V5h5DeFxTsNnyLEoapcDk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e52eec27f50d4829d5a8826020dec10_JaffaCakes118

Files

2e52eec27f50d4829d5a8826020dec10_JaffaCakes118
.exe windows:4 windows x86 arch:x86

86f8f179c45a89933c65880576d2260d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathAddBackslashA

setupapi

InstallCatalog
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

GetAtomNameW
GetFileAttributesW
GetProfileStringA
FindResourceExW
FlushFileBuffers
SearchPathA
LockFile
GetUserDefaultLangID
UnlockFile
EnumResourceNamesA
SetEndOfFile
GetVolumeInformationA
IsDBCSLeadByte
GetFileTime
TzSpecificLocalTimeToSystemTime
GetVersionExA
GetFileType
FileTimeToLocalFileTime
CompareStringA
FileTimeToSystemTime
GetSystemDirectoryA

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA

wininet

InternetOpenA
InternetReadFile
InternetOpenUrlA
InternetCloseHandle

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ