74319376e702ff5df2886f521901e899_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74319376e702ff5df2886f521901e899_JaffaCakes118
Size

177KB
MD5

74319376e702ff5df2886f521901e899
SHA1

3ceeda58db9e8bacec9c9315b58e27ab44b34674
SHA256

91e6187409553d8295dd978b73949ad8c23ee394e09ff620d936a2acd6c4b0f1
SHA512

161bf4bb7eb1b28f133681ec137a7c29d9338f97791f692644ade13972a0c55ee4129246afb8ba16094298ffecf320a2dd308b3a61638b6ab2117fc3597ee71e
SSDEEP

3072:mm73bRRI00hqx7jM8jgZ6Zdwp8Qld/1d8P65O3du9GnubaDvSXDx1VAXKRVtGRCw:VvRR7mqxE8vpQlFaw7fbaWDxbAXivuZZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74319376e702ff5df2886f521901e899_JaffaCakes118

Files

74319376e702ff5df2886f521901e899_JaffaCakes118
.exe windows:4 windows x86 arch:x86

abcb8bb29e585c11f3f2c4a4c6abbc0f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

kernel32

ExitProcess
FindResourceExW
GetCalendarInfoA
GetLocalTime
IsDebuggerPresent
SetLastError
GetPriorityClass
FlushInstructionCache
CreateFileW
GetCurrentDirectoryW
EnumResourceNamesA
GetProcessAffinityMask
SetPriorityClass
FindFirstFileW
LockResource
SetCurrentDirectoryW
GetUserDefaultUILanguage
SetFilePointerEx
IsProcessorFeaturePresent
LoadResource

comctl32

ImageList_DragLeave
ImageList_DragMove
ImageList_DragEnter

msimg32

AlphaBlend
TransparentBlt

Sections

.text
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ