eb0314d8dc09b04fa8e383f087b574ab_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb0314d8dc09b04fa8e383f087b574ab_JaffaCakes118
Size

177KB
MD5

eb0314d8dc09b04fa8e383f087b574ab
SHA1

df03b6a3d0d29fd91c5b8bde6678c9d75dd14289
SHA256

060f8838f01a6b3af733a8a573ca4bb8884e1e7833e282e04414ccc57a6df0de
SHA512

281abfd3bb5dd5f3c740104ee5b321177f071e83df07a982157d4b21a4fbae1f29076eebd3b4f69b4b2df4c3dda3675467226e4dd871f944398516da435d1771
SSDEEP

3072:Sz5IBz5FeoQoYKyGnK7+TfhCnwFoVptmUylP7dadX6lJSfzZwiLaozBca:oUz5FeoFYKhT5IcUKPZd0wi2gBca

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb0314d8dc09b04fa8e383f087b574ab_JaffaCakes118

Files

eb0314d8dc09b04fa8e383f087b574ab_JaffaCakes118
.exe windows:4 windows x86 arch:x86

21a2963d0d4e89da67de8d9e89a328de

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameW
RtlUnwind
MultiByteToWideChar
TlsSetValue
SetFilePointer
GetTimeFormatA
VirtualAlloc
GetACP
HeapSize
TlsGetValue
HeapReAlloc
GetConsoleOutputCP
EnumResourceNamesA
IsValidCodePage
TlsAlloc
GetDateFormatA
GetCPInfoExW
GetOEMCP
SetStdHandle
GetLocaleInfoA
GetCPInfo
WriteConsoleA
RaiseException

occache

FindControlClose

shlwapi

SHCreateStreamOnFileA
SHCreateStreamOnFileEx
PathIsContentTypeW
PathAppendW
PathIsFileSpecW
PathCreateFromUrlA

Sections

.text
Size: 90KB - Virtual size: 482KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ