b4e30e0eb0ad2ff159a4f44405f439a5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4e30e0eb0ad2ff159a4f44405f439a5_JaffaCakes118
Size

52KB
MD5

b4e30e0eb0ad2ff159a4f44405f439a5
SHA1

61d5cc04fba43a9c8137cff2b28660eb7d9911b8
SHA256

901c51d67a3fad6a1fc0b542383203d68a813226778fb049c2ee52606cb4e93c
SHA512

efde5ad5141d420bac03cd3f203dea20e2bd5b7bce53c825ccd4cb7ff6e908456a56597f82e961fdf66e862bd0c884b8f21f21022c23cd3c66f9024da1fa778f
SSDEEP

768:j+m08QotiCjJuPGw4HzY5o+tfeRyxU5aCZnI7147:j+m00tiCjJuPGw4so+tfeRyxU5J7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4e30e0eb0ad2ff159a4f44405f439a5_JaffaCakes118

Files

b4e30e0eb0ad2ff159a4f44405f439a5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5e5509fc08199fda59c06d2ab67f46dd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

kernel32

GetCommandLineA
ReleaseMutex
FreeLibrary
GetProcAddress
LoadLibraryExA
SetCurrentDirectoryA
SetErrorMode
WaitForSingleObject
GetLastError
MapViewOfFile
ExitProcess

ole32

OleInitialize
OleUninitialize

Sections

.text
Size: 512B - Virtual size: 477B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ