db37519d8b807fec9fdbc4dfee6db337_JaffaCakes118 | Triage

Sharing

General

Target

db37519d8b807fec9fdbc4dfee6db337_JaffaCakes118
Size

167KB
MD5

db37519d8b807fec9fdbc4dfee6db337
SHA1

c39ab34f4b17d207a23d5b241209d92f93ff8782
SHA256

96e9f5cb19fb2a1ad3e51178bcc8b073aa1ec3fdd75ca8a33f2b6c7e323f95b1
SHA512

3f2aa56e3b88ea52a92d3400efd5d11cce6c6abf3768f7ac7e9d5f354b700c6018ea05cecee39516bc3335b7ddab8e9ed5a8e0f7aa76899cd6f5e190265e8e62
SSDEEP

3072:0o/c4EeGvvo1erMZssloz5or9SHVOki70VzanLdsaZN:rEJvQtQ5orOZc0VzanLu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db37519d8b807fec9fdbc4dfee6db337_JaffaCakes118

Files

db37519d8b807fec9fdbc4dfee6db337_JaffaCakes118
.exe windows:4 windows x86 arch:x86

223f11974049e5b480fec53f28388650

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

shlwapi

PathFileExistsW
PathFileExistsA
StrStrIW

kernel32

LeaveCriticalSection
GetCalendarInfoA
GetVersionExA
lstrcpynW
SystemTimeToFileTime
LoadLibraryExW
GetProcessHeap
WriteFile
FindResourceExA
LoadLibraryW
HeapFree
HeapDestroy
GetSystemTime
EnumResourceNamesA
LoadResource
GetStdHandle
FindFirstFileW
HeapAlloc
LockResource
GetModuleHandleA
FindResourceA
CloseHandle
SizeofResource
CreateFileW
TerminateProcess

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ