c7d65cc49e45dd1cacc733a560e50683_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c7d65cc49e45dd1cacc733a560e50683_JaffaCakes118
Size

398KB
MD5

c7d65cc49e45dd1cacc733a560e50683
SHA1

2bdf2458da8aa58d4f4425924b09fdac05c88fe7
SHA256

6ee9be9f46803842d55397ea904679357ab61eaf9d2873b6ba254c1abae39b21
SHA512

37dfdbdeb6c14f7d1c793306501367c5eb7c5ca08bae826436b4c882779eb05de1e19bdd6e721bfd93dd4c1cb25b695636797b6ebebc3f9c72083ea46203a115
SSDEEP

6144:qsE9C8j5LHN7qRgLeQcUsn831DwqiLL2UtRYIaxFbpvQGpe8dFvDDy8QrtdKVBn1:GC8j5LHNmRG4Pn8FE+Kqz/vR3FvK0mzy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7d65cc49e45dd1cacc733a560e50683_JaffaCakes118

Files

c7d65cc49e45dd1cacc733a560e50683_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8ba47a23d75efe23bcab7d23280a7f70

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

gdiplus

GdipImageGetFrameDimensionsList

user32

DefWindowProcW

gdi32

BitBlt

ole32

OleLoadFromStream

oleaut32

VarBstrFromDate

comctl32

ImageList_Add

rpcrt4

UuidCreateSequential

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 352KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE