66d3b3922e4e10046e554bdbe861dc65_JaffaCakes118 | Triage

Sharing

General

Target

66d3b3922e4e10046e554bdbe861dc65_JaffaCakes118
Size

6KB
MD5

66d3b3922e4e10046e554bdbe861dc65
SHA1

b52f6eaee58fc5dab3f802b459a53594f222e5c0
SHA256

a917d8f428ce08c312b110e7b2654333e7ab151bb9f465f1c9546e0ad2662161
SHA512

4df64d6dab016f18b3f3e3aae944e591d8c3e61e93d25ba6d75e70ed9025ac6a4fb2093e474df22e07ff7a63704f1bd30b9a7746f020e3a05504f5ba93221614
SSDEEP

96:kWLSdjNdY1k8Whi2T7aNk8UGz2hROvS1Ipd+ls/KA0xu6uq+8BduEL:kFCIgEarz2hgvXXKdx/T+vE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66d3b3922e4e10046e554bdbe861dc65_JaffaCakes118

Files

66d3b3922e4e10046e554bdbe861dc65_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b6665dbb55ba3310fec2d7615e36aed5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CreateStreamOnHGlobal
CoCreateInstance

kernel32

CreateFileA
ExitProcess
GetLocalTime
GetModuleFileNameA
GetTickCount
GetWindowsDirectoryA
GlobalAlloc
CopyFileA
LocalAlloc
LocalFree
MultiByteToWideChar
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpiA
lstrcpyA
lstrlenA
CloseHandle
GlobalFree

user32

wsprintfA
GetWindowTextA

advapi32

RegSetValueExA
RegQueryValueExA
RegOpenKeyA
RegCreateKeyA
RegCloseKey

shlwapi

StrRChrIA
StrStrA
StrStrIA

shell32

ShellExecuteA

wininet

DeleteUrlCacheEntryA
FindCloseUrlCache
FindFirstUrlCacheEntryA
FindNextUrlCacheEntryA

urlmon

URLOpenBlockingStreamA

oleaut32

SysFreeString
SysAllocString
SafeArrayUnaccessData
SafeArrayCreateVector
SafeArrayAccessData

Sections

.text
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ