32f27fc0e1f2fe7326ca2ea2f2e174ea_JaffaCakes118 | Triage

Sharing

General

Target

32f27fc0e1f2fe7326ca2ea2f2e174ea_JaffaCakes118
Size

133KB
MD5

32f27fc0e1f2fe7326ca2ea2f2e174ea
SHA1

d7e698f07f045f8609f9437dea61c09e18c26081
SHA256

c6d23ca043c1f994cf495d289e6a5415ac668c60669f8f0f2af383c250e7c0fc
SHA512

a55d86cbb29fead9a18b16914b3cb96b324d96dc313590c6b6a3c6513b9c66c027bfe4d72404b2bd604c7840740fadfe0cc6feca3c435711b93d7174098ce9f9
SSDEEP

3072:/mQG3Kf6xaoZxhZr0kaGxrNIBnBJoxuI1FLse/tF0HfheY9h:aRvJZr0vArNQex5Lq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
32f27fc0e1f2fe7326ca2ea2f2e174ea_JaffaCakes118

Files

32f27fc0e1f2fe7326ca2ea2f2e174ea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9967ffe4c5b18353697d421993d48923

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
WinExec
FindFirstFileA
WaitForSingleObject
CreateThread
GlobalFree
DeviceIoControl
GlobalAlloc
Sleep
DeleteFileA
GetModuleFileNameA
GetTempPathA
GetProcAddress
GetModuleHandleA
GetLastError
WriteFile
GetSystemDirectoryA
GetFileAttributesExA
CreateFileA
SetFileTime
CloseHandle
GetVersionExA
GetTickCount
GetTempFileNameA

advapi32

OpenServiceA
StartServiceA
CreateServiceA
CloseServiceHandle
OpenSCManagerA
DeleteService

msvcrt

memset
strcpy
??3@YAXPAX@Z
_stricmp
strncpy
strlen
fclose
fwrite
fopen
sprintf
rand
srand
_strlwr
strncat
memcpy
_snprintf
__CxxFrameHandler
_EH_prolog
strrchr
strcat
memmove
strchr

shlwapi

SHSetValueA
SHGetValueA

rpcrt4

UuidCreate
UuidToStringA
RpcStringFreeA

setupapi

SetupIterateCabinetA

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.CRT
Size: 16B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1008B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ