a40072a0bfe89729da1df0962fdebdcd_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a40072a0bfe89729da1df0962fdebdcd_JaffaCakes118
Size

243KB
MD5

a40072a0bfe89729da1df0962fdebdcd
SHA1

8e58604f27356aa579912baa1f1b95f15baaf8ee
SHA256

91ae7b16093b9e408a1cc0889157e045eb1adece2c2384567748340c82751c48
SHA512

eeaa4e5cc63a639a32e6448bddfb4a8b4725b40a636dcfa32cc02922098c3f287e8cd0969e7165f69aa3a1b07c5b4ad56ccc141ca3b528ed75d328d68bc57c5f
SSDEEP

6144:qqjgsaxwH+Z0HqwJCk0vYuPk1y8jL3X9BAskEv3ilPet:1ZaGH/C5wfDjxOs73d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a40072a0bfe89729da1df0962fdebdcd_JaffaCakes118

Files

a40072a0bfe89729da1df0962fdebdcd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69643cb208b4d7983089033331126925

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExW

kernel32

LocalAlloc
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetFileAttributesA
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
WideCharToMultiByte
ReadFile
WriteFile
SetFilePointer

oleaut32

DispInvoke
OleLoadPicture
VarUdateFromDate
GetErrorInfo
SetErrorInfo
VariantClear
SysReAllocStringLen

shlwapi

PathFindExtensionA

Sections

.text
Size: 139KB - Virtual size: 202KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 308B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ