837d10575c6c61648183f27191e00ca2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

837d10575c6c61648183f27191e00ca2_JaffaCakes118
Size

53KB
MD5

837d10575c6c61648183f27191e00ca2
SHA1

e5838545e1ab2e3633dda9da4859767372206ebc
SHA256

61b98b757baa37a5375ebf664e7edeb9cf3fe79897ce182fc4231e6ddbabf1ac
SHA512

fe22fc6bbcba4a5a91293fff259510e24f0a04c23b5bf18f08e2e05b8446b7357a9b4255c68856ad3ed44597edb391667cf2b51af4a56a19c900397b9d3ae7ac
SSDEEP

1536:1U7iSAZlWlOwwq1+jgFQlsJsDyI62DJQP54:m2rPHD0agFQlsy+I66K54

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
837d10575c6c61648183f27191e00ca2_JaffaCakes118

Files

837d10575c6c61648183f27191e00ca2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a629ebd86684de4ffe04ea84d8aa10ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
EnterCriticalSection
ExitProcess
FatalAppExitA
GetACP
GetCommandLineA
GetDateFormatA
GetModuleHandleA
GetOEMCP
GetProcessAffinityMask
GetStartupInfoA
GetSystemInfo
GlobalMemoryStatus
HeapAlloc
HeapCreate
HeapFree
HeapReAlloc
InterlockedExchange
LoadLibraryA
MultiByteToWideChar
OpenProcess
ResetEvent
RtlUnwind
SetEndOfFile
SetFilePointer
SetLastError
SetUnhandledExceptionFilter
TerminateProcess

user32

IsIconic
EndDeferWindowPos
SetClassLongA
SetUserObjectSecurity
SetCapture
GetScrollInfo
DrawEdge

comdlg32

PageSetupDlgA

Exports

Exports

GetUpdateCount
TTF_FontAscent

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ