fe91deaa39b9acbaff1d19425cc2ed50_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe91deaa39b9acbaff1d19425cc2ed50_JaffaCakes118
Size

164KB
MD5

fe91deaa39b9acbaff1d19425cc2ed50
SHA1

9504e1bae41a3b74e515b6a49eb693e23f784ee9
SHA256

d2cd5da41a187f2b6692fa827bf55cbfbe3ed782a27893251095f77293a694b3
SHA512

1c95113c9b6d6ed0a01ba9d66c379dbaf0dad55780506ac30c35dfbbb95d64276f8d1bcb07c4aff4dea9d6e440dd3d1d40f83b8b2acbff4620f52ad352546a05
SSDEEP

3072:O1Agm3H73qZHwPp6CPNK5x7sjSnzKwx+UIQkTlOAlpkd+:13qUbPNK5xwmnzKwYDXfJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe91deaa39b9acbaff1d19425cc2ed50_JaffaCakes118

Files

fe91deaa39b9acbaff1d19425cc2ed50_JaffaCakes118
.exe windows:4 windows x86 arch:x86

271cdeff77fbb2773bdc90ec024824b0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
BaseInitAppcompatCacheSupport
GetTickCount
GlobalFree
LoadLibraryExW
SetUnhandledExceptionFilter
LoadLibraryA
FreeLibrary
GetSystemDirectoryW
MultiByteToWideChar
EnumResourceTypesW
RaiseException
GlobalUnlock
CreateMailslotA
FormatMessageA
GetLastError
MulDiv
GetCurrentThread
lstrlenA
UnhandledExceptionFilter

oleacc

AccessibleChildren
CreateStdAccessibleProxyA

gdi32

GetStockObject

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ