da9bc27fa3c179b785735f5428b9ae9c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da9bc27fa3c179b785735f5428b9ae9c_JaffaCakes118
Size

173KB
MD5

da9bc27fa3c179b785735f5428b9ae9c
SHA1

f65584a41c117b66be965715ac9f83784b315a8e
SHA256

3b1f658f75f75245dfe37b52824e84aefd07dd4e101b5b8585b379b88ec81b14
SHA512

c016bf70410b1ca01883a2403e0a98624c3258df872ee766260c5188683c6d3165d97069f52baa8c4b6ebe991dcb2c3c7f5431aa83c507a4300c578146b10d2e
SSDEEP

3072:d8F8TYX6UdogH9H/TaZlKavdqguCx+kaVUV5Fvs8KSmkNb:u8WqgH9ba1qeszU1eSmk5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da9bc27fa3c179b785735f5428b9ae9c_JaffaCakes118

Files

da9bc27fa3c179b785735f5428b9ae9c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a320c5d31a259de5b28310745ef8e426

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
CloseHandle
GetCurrentProcess
LoadLibraryA
CreateFileA
ExitProcess
LCMapStringA

user32

CharLowerBuffA
wsprintfA
CreateWindowExA
SetWindowLongA
CloseWindow

advapi32

RegCloseKey
RegSetValueA
RegDeleteKeyA
RegQueryValueA
RegCreateKeyA
RegDeleteValueA
RegEnumKeyA
RegEnumValueA
RegOpenKeyA

Sections

.text
Size: 153KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ