65206164af3fd9b0181dce6b972b6bcb_JaffaCakes118 | Triage

Sharing

General

Target

65206164af3fd9b0181dce6b972b6bcb_JaffaCakes118
Size

6.4MB
MD5

65206164af3fd9b0181dce6b972b6bcb
SHA1

da3b61ff4dd7a309f5826e9ea75ffb1626f6ca31
SHA256

2f9ddd29b9b7907ffabeea3b511ac52deb5f852e80f1d1cd95d2cb4e751c389e
SHA512

a5c890282fe2e619d56d6e5541d2125da8cab45bd1ab8c70eaac3a1acb51f7b82595bf393348abb088e72641e8b1eae73673429e25e6614366cbd9f283a84cca
SSDEEP

98304:+SoC7LTKSbsniw5F1KlLQHwold518pj77LcHiqICQnusg1lz4xjTfmBvM:+c7q7prwLQHwoz4j7sty4Z4FGvM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65206164af3fd9b0181dce6b972b6bcb_JaffaCakes118

Files

65206164af3fd9b0181dce6b972b6bcb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ababe25c5c8c8e8968ab0886d3c6a978

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

advapi32

RegCloseKey

gdi32

CreateCompatibleBitmap

imm32

ImmAssociateContext

ole32

CoCreateInstance

oleaut32

SysAllocString

shell32

SHGetSpecialFolderLocation

shlwapi

PathIsDirectoryW

user32

AdjustWindowRect

winmm

auxGetNumDevs

wsock32

WSAAsyncGetHostByName

Sections

.text
Size: 6.1MB - Virtual size: 11.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 294KB - Virtual size: 296KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE