3ca5fd59a78c8ad64c998ccf6ae5cc75_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ca5fd59a78c8ad64c998ccf6ae5cc75_JaffaCakes118
Size

21KB
MD5

3ca5fd59a78c8ad64c998ccf6ae5cc75
SHA1

9511a2f56019e3c20cb476a5ee6802e13c478e4f
SHA256

b5c5efd903bbb1757907af9c219842a903508b7d7cbd8876c6dbc9f18876042b
SHA512

d7c0ffaaeb3f6a81a2e2bf91dd6ec5656671569512bd24c5515b6b3630bb05d9c9f3cec0257d80d8581df4e367bd80c2a450f1770fbd77200ad2bb688354b870
SSDEEP

384:DCAMY92f3zQw3EZDo/+5EVTYOCXQqTsEwlA6h/0wvw:DCAd9CUu+DoCETFCgqV6h/9vw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ca5fd59a78c8ad64c998ccf6ae5cc75_JaffaCakes118

Files

3ca5fd59a78c8ad64c998ccf6ae5cc75_JaffaCakes118
.exe windows:1 windows x86 arch:x86

39fcccfe35dd9236839b60987216e330

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VarI1FromDisp
SafeArrayUnaccessData
VarUdateFromDate
VarImp
VarUI2FromR4
VarDecRound

ole32

StgOpenStorageEx
HDC_UserMarshal
CreateILockBytesOnHGlobal
STGMEDIUM_UserMarshal
CoBuildVersion
OleConvertIStorageToOLESTREAM

Sections

.text
Size: 16KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE