93f3b0ad340a34fe29450a3ca343531c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93f3b0ad340a34fe29450a3ca343531c_JaffaCakes118
Size

192KB
MD5

93f3b0ad340a34fe29450a3ca343531c
SHA1

3000229a6446aeadb6360426bd426446f654a86b
SHA256

17d2da1b495ceab0cb7fe7e7db349f5eadf554dd72b36bbc392e104ea4ea271c
SHA512

b0377693ff0589b7d73ce55e579950a0e49c7dd3c76393e0988d223b55627a52fae6973eaffc36f8c73c1717bef0e4c248d143f9e584a9ca3a12326f379598b4
SSDEEP

6144:36PXYGi9p9ppePZxln1Giiwdye7HyHQt:3gXYGkmpGiNdyer+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93f3b0ad340a34fe29450a3ca343531c_JaffaCakes118

Files

93f3b0ad340a34fe29450a3ca343531c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ca5fe9fb9c8fe04ee21586c2a87f060b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsA
GetAtomNameW
IsBadReadPtr
HeapDestroy
IsBadWritePtr
TlsFree
WriteFile
TlsGetValue
GetEnvironmentStrings
WideCharToMultiByte
UnhandledExceptionFilter
HeapCreate
GetCPInfo
GetEnvironmentVariableA
GetCurrentThread
GetStartupInfoA
IsBadCodePtr
FatalAppExitA
VirtualFree
EnumResourceNamesA
HeapReAlloc
SetLastError
SetHandleCount
GetStdHandle
IsBadStringPtrW
TlsAlloc
VirtualAlloc
SetUnhandledExceptionFilter
SetFilePointer
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
GetFileType
TlsSetValue

rpcrt4

NdrConformantArrayFree
UuidCreate

mprapi

MprConfigServerDisconnect
MprConfigServerConnect
MprConfigGetFriendlyName

shell32

SHGetSpecialFolderPathA

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ