9505a6f7fd2f272c0758ea87b66929bf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9505a6f7fd2f272c0758ea87b66929bf_JaffaCakes118
Size

169KB
MD5

9505a6f7fd2f272c0758ea87b66929bf
SHA1

7651ac828f183d107eeacaba2e077fcebf36a0d3
SHA256

10e52b83cc729c580ea793810fdf2f19a7e85bbce1cb79f2e50bc170a11acb97
SHA512

10e52e502b3e883dab486560cc189200d64fd224e844d51f289f2f968aa041f52cb167200f5de5aaefedeac542bd9caeafbc44376ceb8235552a5cafe5d8b91f
SSDEEP

3072:FYLFuDdubpwdvNvV91H5NV0CWrl37R71qsUQkhTy3c3tYXd9Q1CKj1:6ulTvV91ZD0brlbfM3eakq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9505a6f7fd2f272c0758ea87b66929bf_JaffaCakes118

Files

9505a6f7fd2f272c0758ea87b66929bf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ec09ad90296e0f0c27d34dcaccf151dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipGetImageWidth
GdipDisposeImage

kernel32

GetLocaleInfoA
WideCharToMultiByte
GetTempPathA
GetCalendarInfoW
CompareStringA
ExitProcess
HeapDestroy
QueryPerformanceCounter
lstrcpynW
CreateDirectoryA
FindResourceA
SetHandleCount
HeapSize
GetVersionExA
HeapCreate
IsDBCSLeadByte
Sleep
ExpandEnvironmentStringsA
MultiByteToWideChar
GetTickCount
EnumResourceNamesA
lstrcpynA
GetNumberFormatA
GetVersion
GetCurrentProcess
GetFullPathNameW
GetCurrentProcessId
InitializeCriticalSection
GetStartupInfoA
GetModuleFileNameA
GetStringTypeA
DeleteFileA
WaitForSingleObject
SystemTimeToFileTime
DeleteFileW
GetCPInfo
GetStringTypeW
GetFullPathNameA

ole32

CoGetMalloc
CoTaskMemAlloc
CoUninitialize
StringFromGUID2
CoInitialize
CoTaskMemFree

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ