aa7384274ab0807565d0713b8782305b_JaffaCakes118 | Triage

Sharing

General

Target

aa7384274ab0807565d0713b8782305b_JaffaCakes118
Size

54KB
MD5

aa7384274ab0807565d0713b8782305b
SHA1

50faf9ad2abaa9290d4133148c37d1cca00ff66c
SHA256

b93b35e45e79c7d0373f31df3036bfea78dcad0e3680c51052d4c13d8e0afc97
SHA512

4c41bac6a8ef4836a9139e1ba0a6aae557133c3bf7e20d1d9c5ea7a032178d721992c7f3e2db85b8f076a339c699f9a4bf1ed5bb0a49d01cdc9b1869a3a9bd87
SSDEEP

1536:TAmzX1ixlXWfGpunRl75VTyeQ/v3tjFxvaYyJZqpnML1d:lX1i1Inj75VTyeQ/vd3aYy/YnW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa7384274ab0807565d0713b8782305b_JaffaCakes118

Files

aa7384274ab0807565d0713b8782305b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

52ce07c75f35c8989525094d469108f9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

secur32

GetUserNameExW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

user32

CreateWindowExW

kernel32

LocalAlloc
GetModuleHandleW
WideCharToMultiByte
lstrcpynW
GlobalUnlock
GlobalLock
GlobalAlloc
FlushInstructionCache
GetCurrentProcess
lstrcmpW
MulDiv
SetLastError
WaitForSingleObject
HeapSetInformation
GlobalFree
DeleteCriticalSection
GetTickCount
MultiByteToWideChar
lstrlenA
GlobalHandle
FormatMessageW
InterlockedDecrement
InterlockedIncrement
CreateFileW
CloseHandle
LocalAlloc
GetLocaleInfoW
GetComputerNameW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
lstrlenW
InterlockedExchange
OpenProcess
GetModuleFileNameW
GetProcessId
CreateThread

oleaut32

VariantInit
DispGetIDsOfNames
OleTranslateColor
RevokeActiveObject
SetErrorInfo

msvcrt

_controlfp

Sections

.text
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 268B