cee54d421e5307137f6e2fb2e8a50582_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cee54d421e5307137f6e2fb2e8a50582_JaffaCakes118
Size

148KB
MD5

cee54d421e5307137f6e2fb2e8a50582
SHA1

7e2e05f21efb0e75e26fc11fbdd8555afd21d32c
SHA256

0230b80015d64cc487acf483ac5383b18d30bd2998d9674cef3c1ba221f90d73
SHA512

67796f089d02731973cce9085b370a6d588966f23654d6acbc9a07c4a518a9a3444174bbfe88eb2bfe39d858b195c96f2c54a05eafdec232ae759015b310151d
SSDEEP

1536:WdJp7p/DlSZhmVyeNcmKfG+XbHlW4pbaCSGclVoLXJAwWPcWdRobKn6c0g1pj:Wdn7p/UhmkeNL2bZuJG+WXvUcK6j4pj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cee54d421e5307137f6e2fb2e8a50582_JaffaCakes118

Files

cee54d421e5307137f6e2fb2e8a50582_JaffaCakes118
.exe windows:1 windows x86 arch:x86

d8ef06b4364dbda5ba64bb5490960cc0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualQueryEx
GetFileAttributesA
GlobalAlloc
SetFilePointer
GetCPInfo
WaitForMultipleObjects
RtlUnwind
GlobalReAlloc
CloseHandle
FileTimeToSystemTime
GetModuleHandleA
QueryPerformanceCounter
GetNumberFormatA
CreateFileMappingA
PulseEvent
TlsFree
IsBadReadPtr
GetSystemDirectoryA
GetVersion
GetStartupInfoA
HeapReAlloc

msvcrt

memcpy
_lrotr
_ismbckata
_controlfp
__setusermatherr
__p__fmode
wcstod
_adjust_fdiv
wcscspn
fseek
_except_handler3
__getmainargs
_initterm
__set_app_type
_wcserror
_mbccpy
_ismbbkana
wcsncpy
_ismbcspace
_wasctime
_assert
_acmdln
_ismbbpunct
_mbslen
__p__commode
pow
_wpgmptr
freopen
_XcptFilter
_wcsnicoll
_getpid
exit
_exit
_ismbcl2

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ