77c991a169bed9d43c359a32b68ca722_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

77c991a169bed9d43c359a32b68ca722_JaffaCakes118
Size

171KB
MD5

77c991a169bed9d43c359a32b68ca722
SHA1

5dd92e72b206cf2bcc88553b6b2d5163eec2cc15
SHA256

92ce5eb114e2c3dcd23ad2154b2734ce0f9074522846fb34157f23a0e3b70544
SHA512

a00c70b36a680f5146f3962f276f9ec39adba76a197517ad859999b9174570d9a1e262778cfa131b95d2338b826149677925980fd09bff0b416bca71fec7c986
SSDEEP

3072:WQ7cNlcesFDvY5lWP7VvIuviLBFDUJ2F6mQBJ9G9ka4lfIG3aAusN:SKeslg5kxn6LsJ229e/FGqnsN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77c991a169bed9d43c359a32b68ca722_JaffaCakes118

Files

77c991a169bed9d43c359a32b68ca722_JaffaCakes118
.exe windows:4 windows x86 arch:x86

140f46137e4ac1393371ebfbc0ca0c4e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

kernel32

SystemTimeToFileTime
GetCalendarInfoA
GetProcessHeap
SizeofResource
GetVersionExA
LoadResource
GetSystemTime
LeaveCriticalSection
GetModuleHandleA
LockResource
HeapDestroy
CreateFileW
FindResourceA
EnumResourceNamesA
WriteFile
FindFirstFileW
CloseHandle
FindResourceExA
HeapFree
LoadLibraryExW
GetStdHandle
HeapAlloc
lstrcpynW
LoadLibraryW
TerminateProcess

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ