87cb138363cd9d7499a8589a468beeca_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87cb138363cd9d7499a8589a468beeca_JaffaCakes118
Size

30KB
MD5

87cb138363cd9d7499a8589a468beeca
SHA1

49f1a3396bdffb527a5f34d38f4d414ff1d95519
SHA256

71927e5f93fdeeb23ce915b3df90fba06c71bff5570d87ac384c23467a562694
SHA512

74fb3ba11eb6022c322cb3b81123cf285f9dddde4b095b3b4f5dbe6905826cb6b6616c5b680343a75949ff9d421d457f91d0e6c1f5801856292572f0d06a4d81
SSDEEP

384:Vugmj8LrUcDOahE4Twm/UNyxwAD4O7ABCwRHI/MjRbuFB+kXgD7WYg+Xra/oQ+0l:kEUP04y7NIo0j6Q3CtgQB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87cb138363cd9d7499a8589a468beeca_JaffaCakes118

Files

87cb138363cd9d7499a8589a468beeca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eb7a4932d1b3c4321b977aac3ceb86b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
CreateThread
FatalExit
ExitProcess
CreateThread

user32

GetMenuState
CharToOemW
GetClassWord
DestroyCursor
CreateIconIndirect
FindWindowW
GetUpdateRgn

shell32

DriveType
FreeIconList
OpenAs_RunDLL
SHFindFiles
SHFree
SHUnlockShared
PathResolve
SheConvertPathW

Sections

.text
Size: 14KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE