b190b7b6a01c3fc8fcc2c90f2ee051cf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b190b7b6a01c3fc8fcc2c90f2ee051cf_JaffaCakes118
Size

207KB
MD5

b190b7b6a01c3fc8fcc2c90f2ee051cf
SHA1

9b84d8aee8881470b6438ef10921fa1ff163addf
SHA256

2d7efae5e81ebd19d76a8c4a562b56a79751aaddf513e4b89855ae4797d44424
SHA512

0260aabe60c2fd05bcf5ce9415b1a189653d3ea972caaef1fd5f6baacfbf94ed4c5924ef136b602a1cd292fe5bd616808ba0ea0f6d780042b65b13a3659f4601
SSDEEP

3072:LLfQ4sEFm22gQhSdc96gT2zMKdGuUsh5l+VJbU0q7hcjxPMexSZc:LLf7sEIC/+gEYMKd1UGg80wcFPn5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b190b7b6a01c3fc8fcc2c90f2ee051cf_JaffaCakes118

Files

b190b7b6a01c3fc8fcc2c90f2ee051cf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

364e9b2e18d3d573393a4bf75c4f9dbd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDefaultLangID
SetLastError
FreeLibrary
GetCompressedFileSizeW
TerminateThread
GetACP
GetLocaleInfoA
GetThreadLocale
GetStartupInfoA
UnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetDriveTypeA
CreateEventA
QueryDosDeviceA
OutputDebugStringA
SearchPathA
GetWindowsDirectoryA
SetUnhandledExceptionFilter
CreateFileA
ReleaseMutex
GetCurrentThreadId
CreateThread
FlushInstructionCache
WaitForSingleObject
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetSystemInfo
VirtualAlloc
VirtualFree

avifil32

AVIBuildFilter

advapi32

RegQueryValueExW
RegQueryInfoKeyW
RegCloseKey
RegCreateKeyExW

oleaut32

GetRecordInfoFromTypeInfo
CreateErrorInfo
OleCreateFontIndirect
GetErrorInfo
SetErrorInfo
GetActiveObject
VariantInit
SysFreeString

Sections

.text
Size: 150KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE