b2d395bc7c87b90bbd06d6663b9d23a9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2d395bc7c87b90bbd06d6663b9d23a9_JaffaCakes118
Size

275KB
MD5

b2d395bc7c87b90bbd06d6663b9d23a9
SHA1

210485c907d4f6783a09cb0cac803ff61ff1de2f
SHA256

4e10ab4d51d6ce8c2fe77a58be58add381c6157e6b941b1ef73ebd0a728fe0ff
SHA512

a6431e5c339458e3dd8105a4d51ae5f8676ff59531e559d4f0fe784b197f206cbc5f3522a05a86304e21b614df2877c606c8e0369098a9bf53ba7327d8ed4005
SSDEEP

6144:Q578//BPVPHEeLeZvtGfIjt6dxqXctfqDwaIGZUkGuoab3lpxjqDcWhD:m7ApPZ1eZvtGfUb0iUvkpUDxhD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2d395bc7c87b90bbd06d6663b9d23a9_JaffaCakes118

Files

b2d395bc7c87b90bbd06d6663b9d23a9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

41b369e334ae0101ef48220a808ff7f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameW
EnumResourceLanguagesW
FindNextFileA
GetCurrentProcessId
GetModuleHandleA
GlobalHandle
SetFilePointer
WideCharToMultiByte
IsDBCSLeadByte
ReadFile
EnumResourceTypesA
FindFirstFileA
QueryPerformanceCounter
GetSystemDirectoryW
WriteFile
lstrlenA
GetCurrentThreadId
FindClose

newdev

UpdateDriverForPlugAndPlayDevicesW

oleacc

LresultFromObject
CreateStdAccessibleProxyW

Sections

.text
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ