fe1feb824420ea1d0cd89720644bece0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe1feb824420ea1d0cd89720644bece0_JaffaCakes118
Size

588KB
MD5

fe1feb824420ea1d0cd89720644bece0
SHA1

57ac7069f3d250122fbe3e48a2c68c3edc8dfcb2
SHA256

6e1905b2749d24047005d891cb274b7d9a1e5d5249b00de42472f03cd450f55b
SHA512

1cdd7fbe71f45df0b66ecee66474c5a9bf9fa94881e0f12c43357ea42d3110b5645bd4a91c66b158b695d68cef6fc2f965a200e6715c12b4be33740a1aa32c66
SSDEEP

6144:2Qp+JyxoeaZXPe9P45Ibef3xQ3XVrQCxOrs1GPpEX+XK:2i+sxoBXGbbefsXVLxOo1CE+K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe1feb824420ea1d0cd89720644bece0_JaffaCakes118

Files

fe1feb824420ea1d0cd89720644bece0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

be7902ea635417174c964a10d705a351

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
FreeLibrary
lstrlenA
SizeofResource
LoadResource
GetModuleFileNameA
GetLastError
CloseHandle
ReleaseMutex
CreateMutexA
Sleep
GetTickCount
GetStringTypeA
LCMapStringW
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapAlloc
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringA
GetStringTypeW

user32

wsprintfA

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 536KB - Virtual size: 532KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ