72c5348b7016d13d077d35eb0091f0df_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

72c5348b7016d13d077d35eb0091f0df_JaffaCakes118
Size

213KB
MD5

72c5348b7016d13d077d35eb0091f0df
SHA1

867d832a1b0f89cf46bfd8fb05cc39a76f2488c9
SHA256

4f5df4eb99eb2ce8b7885fbe090e9966b60ad9aa50ec25a9bbcc09728161ea3b
SHA512

bbfcb2fa894a6ef66c28bf80f636f790b1ea915704ec4c5169ba665fa210dba4811bb4ba7a8ebe71e20b1ce8f42f60ab063def9df4a50a518619fca1f560979e
SSDEEP

6144:4ZYsbxWjTajcsobKzMquia13qu3k4kXkPIzT:M5WjT3rbKgXxV13kzXkP2T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72c5348b7016d13d077d35eb0091f0df_JaffaCakes118

Files

72c5348b7016d13d077d35eb0091f0df_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b59b0177be489fa00129496e36d6c1b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
RtlUnwind
HeapFree
LCMapStringA
HeapAlloc
LoadLibraryA

user32

CloseWindow
CreateWindowExA
wsprintfA
CharLowerBuffA

advapi32

RegDeleteValueA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA

ole32

CoUninitialize
CoCreateInstance
CoRegisterClassObject

Sections

.text
Size: 76KB - Virtual size: 308KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 59KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 74KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE