bc72d6c4a09aa02823ad1ad0298bb735_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc72d6c4a09aa02823ad1ad0298bb735_JaffaCakes118
Size

157KB
MD5

bc72d6c4a09aa02823ad1ad0298bb735
SHA1

d4d5ecf9ca615547ce531bf9d924d7146591b084
SHA256

426476eac34fb8b5dc9115e1f44ced9a731df7b5de37afe8175e50eba5be73f8
SHA512

f5193430570b649708f048a3602d68aa4add42960c19cbce0cc28f6749cd3a929e818c4681025eb460bbdfde79e132cefe5c386f1e409ad94b6e151a1df2de2e
SSDEEP

3072:IocX1al6+dZ3mLrIdUdcrXvBRZFaPu/165l8A7RYO6cDBCO53WSbmPD/5:I/1al1vmLrOXVF698A7R/6cDYK3WSbcT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc72d6c4a09aa02823ad1ad0298bb735_JaffaCakes118

Files

bc72d6c4a09aa02823ad1ad0298bb735_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98843ad68c271742e27c5259c82f876a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject

kernel32

FindFirstVolumeA
TlsFree
GetPriorityClass
ProcessIdToSessionId
EnumResourceTypesA
InitializeCriticalSection
TlsAlloc
GetStartupInfoA
TlsGetValue
GetFileType

user32

GetUpdateRgn
CreateWindowExW
RegisterClassExW
LoadCursorW
GetDC
GetWindowInfo
MessageBoxW
EndDialog

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.apexi
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ