cfe6f73111cabbff846d51d253a34ec8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cfe6f73111cabbff846d51d253a34ec8_JaffaCakes118
Size

122KB
MD5

cfe6f73111cabbff846d51d253a34ec8
SHA1

10ab805fe4b149d7716563b2943ac47cf187ce61
SHA256

b8748e03cff549045c768363ba5ed6a0ac0d4a8305395bbc30e2f66fd30b6a14
SHA512

5e7f0aa935eedc788862fb8f40e11155b1a7940100e11d1628528e470a18a25bb66c527d539947cc35bd3c3cc2c4c1aecbea1657095e97d9f3b9c97c2dad6dc0
SSDEEP

3072:jyR7ETreFsJ+0hKpiw2I8rUiIRtMpkMd:jy6vrJ+6ScIRtMpkMd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cfe6f73111cabbff846d51d253a34ec8_JaffaCakes118

Files

cfe6f73111cabbff846d51d253a34ec8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d79904d62aef34e06e08a5d81ab22dd8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

CreateThread
SetEndOfFile
GetThreadPriority
CreateEventA
WaitForMultipleObjects
SetFilePointer
SetEvent
FindFirstFileW
FreeEnvironmentStringsA
LeaveCriticalSection
InitializeCriticalSection
WaitForSingleObject
WriteFile
EnumResourceNamesA
Sleep
ReadFile
GetSystemTimeAsFileTime
FindClose
EnterCriticalSection
DeleteCriticalSection
GetLocalTime
ExitProcess
GetStartupInfoA
GetLastError
CloseHandle
LoadLibraryA

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ