37f334207ddaeb56029217ec53196599_JaffaCakes118 | Triage

Sharing

General

Target

37f334207ddaeb56029217ec53196599_JaffaCakes118
Size

37KB
MD5

37f334207ddaeb56029217ec53196599
SHA1

10079364b3b8bd446a3e5ce9139ea07a1b68a25e
SHA256

e96727c2bfb16d1819d4d064a58ad9968c886cf554bfe6d0112586f3857d613b
SHA512

920d59fc4ca21c56f0ed14192c182d8654d0ed768e52293697f803638fd96e71d069a0f2854f77639c03aad17d5053ba4d9d8c43a55c12dd49c0d895c68a80c7
SSDEEP

768:HXpMhjWRH+qlJAIUxQLwKv6N7zv+dPeFdU:HXpMhe+qlh+xioe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37f334207ddaeb56029217ec53196599_JaffaCakes118

Files

37f334207ddaeb56029217ec53196599_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4f8a202fd7d7460e54b12d99ca37d1d8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MapViewOfFile
GetModuleHandleA
lstrcpyA
lstrcatA
ExitProcess
GetModuleFileNameA
SetFileTime
GetFileTime
UnmapViewOfFile
GetFileSize
GetProcAddress
CreateFileMappingA
CloseHandle
WriteFile
LockResource
LoadResource
SizeofResource
FindResourceA
CreateFileA
WideCharToMultiByte
lstrcmpiA

shell32

ShellExecuteA

ole32

CoCreateGuid
StringFromGUID2

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ