42a432018731bd22415b5c11e873e9ff_JaffaCakes118 | Triage

Sharing

General

Target

42a432018731bd22415b5c11e873e9ff_JaffaCakes118
Size

181KB
MD5

42a432018731bd22415b5c11e873e9ff
SHA1

7b7c37e2863af26efb2b20ec49129963f46088b9
SHA256

59363ea7ef5a7b730128bb753b3e6ebfc9cf867e12ba65e504253d1d11c584f8
SHA512

1a43a48a93987ab1f02647b4fa8df45544c59b5940a9341bf080d94873443311c81eab4bd31d5a9c6455cf6ee9e1e221f2811fc18a3951d556d23328c5a35c3b
SSDEEP

3072:R0cEKlASKLlGSGRpigU6QgCAnouKOPDJvGcZWmK/NlNXeO3qr:KsAmRpigURAnoY9eb/Mj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42a432018731bd22415b5c11e873e9ff_JaffaCakes118

Files

42a432018731bd22415b5c11e873e9ff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ab89d2f694ef5752608bb1183731cd75

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

UuidCreate

ole32

CoGetMalloc
CoQueryProxyBlanket
CoInitializeSecurity
CoCreateInstance
CoUninitialize
CoTaskMemFree
CoSetProxyBlanket
CoInitializeEx
StringFromGUID2

kernel32

RtlUnwind
GetCPInfo
GetOEMCP
GetCalendarInfoW
SetEndOfFile
HeapCreate
LeaveCriticalSection
VirtualFree
GetACP
InitializeCriticalSection
SetFilePointer
GetStartupInfoA
HeapSize
EnumResourceNamesA
HeapReAlloc
RaiseException
FreeEnvironmentStringsA
DeleteCriticalSection
ExitProcess
IsValidCodePage
HeapDestroy
EnterCriticalSection
ReadFile

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ