773bf3f676ef13303510c82dbba22093_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

773bf3f676ef13303510c82dbba22093_JaffaCakes118
Size

1.1MB
MD5

773bf3f676ef13303510c82dbba22093
SHA1

13de1c7e001849c91ad1f20b8d04fe288f71a2b7
SHA256

0dcf4b0648215c5fd3d1cf48b3b41f6628a36d0d8afad14cc57e80160e95a1d5
SHA512

58da5e5fde79ed08e15ba0ad309d7b14edaf28fa8648a20ba1ed460532dc9e1d56a0a2dab71e6b242b7081fb0a248851dd2535c13695038b59d827aa84db91a3
SSDEEP

24576:CVfWf09LUPHqb71ztUvzEsvhtwVpsHvRNNa:ifWy4Hq31Rkz/j0pENa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
773bf3f676ef13303510c82dbba22093_JaffaCakes118

Files

773bf3f676ef13303510c82dbba22093_JaffaCakes118
.exe windows:4 windows x86 arch:x86

72ee0489bc5f77225eb835bc6f612eae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

ole32

IsEqualGUID

comctl32

ImageList_SetIconSize

winspool.drv

OpenPrinterA

shell32

ShellExecuteExA

wininet

InternetSetOptionA

urlmon

CoInternetCreateZoneManager

comdlg32

PrintDlgA

winmm

timeGetTime

Sections

.PECO
Size: 460KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shrink
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 109B - Virtual size: 109B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ