03f5d5bfa95a05da094ea6d3cbda4ded_JaffaCakes118 | Triage

Sharing

General

Target

03f5d5bfa95a05da094ea6d3cbda4ded_JaffaCakes118
Size

1.3MB
MD5

03f5d5bfa95a05da094ea6d3cbda4ded
SHA1

76466a812ea36805bb664bdabd263d2f142ce288
SHA256

6177fe7e5abaa9e29c1b2a6c84af6240dd6a1d67793f8b2f3701a35200c30a9a
SHA512

45a1f72c17c02fa4981489f2c650ffa46f96cf5f84ba8011e91ca345178fdd16479ff9e83772d134c044cba21ef3edbc0df61a4d60330591d50741428c0ec08c
SSDEEP

24576:V9hKtTHnf31bTn7uBCB2FK17twQ4v/R2kzlpKzlta9qW1nrNhdCTQ90EN8:V9mT/31f7uB02Fe7t14XR2kKzrcLn9aT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03f5d5bfa95a05da094ea6d3cbda4ded_JaffaCakes118

Files

03f5d5bfa95a05da094ea6d3cbda4ded_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d41ba8a138aeb3bc6a3f3bd6d25725eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord823

msvcrt

malloc

kernel32

Sleep

user32

CloseWindowStation

gdi32

DeleteDC

advapi32

RegisterServiceCtrlHandlerA

shell32

SHGetFileInfoA

avicap32

capGetDriverDescriptionA

ws2_32

setsockopt

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ