d07fd7eda617e5d2c38f457c94c15ac1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d07fd7eda617e5d2c38f457c94c15ac1_JaffaCakes118
Size

45KB
MD5

d07fd7eda617e5d2c38f457c94c15ac1
SHA1

950aed25c6276d03362fc113c94ca267cdff5c58
SHA256

403865ac56188d54189af1cbd1ec7c4fbb9a5b0941d8fb4fdcd30b5e184458c4
SHA512

25b641de75cd5c1aa71c4e7fe4a6a82b04d676364dd3b78288b4034f3067ee61112ae59290ed7bbbbeb7954be0756478eb41101252860cc088e692d9b82b6a8a
SSDEEP

384:0nTVm08QoKkiWZ76UJuP71W55iWHHoSHigH2euwsHTGHVb+VHHmnH+aHjHqLHxmZ:Km08QotiCjJuPGw49z+Xy7yT9eRytVE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d07fd7eda617e5d2c38f457c94c15ac1_JaffaCakes118

Files

d07fd7eda617e5d2c38f457c94c15ac1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5e5509fc08199fda59c06d2ab67f46dd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

kernel32

GetCommandLineA
ReleaseMutex
FreeLibrary
GetProcAddress
LoadLibraryExA
SetCurrentDirectoryA
SetErrorMode
WaitForSingleObject
GetLastError
MapViewOfFile
ExitProcess

ole32

OleInitialize
OleUninitialize

Sections

.text
Size: 512B - Virtual size: 477B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ