09d33d8bee3e7ec67deb8960d3654580_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09d33d8bee3e7ec67deb8960d3654580_JaffaCakes118
Size

181KB
MD5

09d33d8bee3e7ec67deb8960d3654580
SHA1

2bc5d6f475a6b7c0044425faed9fc0b8bd333e84
SHA256

9f88d9597559a6dfd1f55007619efd6e5f5c9dae4a0c2af65101ad6772e462d1
SHA512

1eaaf8f6c43eb453c6a84d1941ae1bef847c6ae24a1886368bfab79e8ce28912f0c7ca4c6cd02d4f3918c34e2086531e10b5ca299ae90f66c896191617a52d65
SSDEEP

3072:I84yyFP60EidKcES+uwlpMyqEKSxkKsnTAFqr/v37noyJHOCBx1O0ZN3:XwFP60EiMLSYMyqEwnTzrHLnoIHOq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09d33d8bee3e7ec67deb8960d3654580_JaffaCakes118

Files

09d33d8bee3e7ec67deb8960d3654580_JaffaCakes118
.exe windows:4 windows x86 arch:x86

17a58167bd80d35ce5ed62f5189d5da2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

kernel32

GetCalendarInfoW
GetLocaleInfoA
CreateFileW
HeapDestroy
LoadLibraryW
HeapSize
GetProcessHeap
LoadLibraryExW
SystemTimeToFileTime
CloseHandle
EnumResourceNamesA
GetSystemTime
WriteFile
FindFirstFileW
HeapAlloc
GetThreadLocale
HeapFree
GetStdHandle
HeapReAlloc
lstrcpynW

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ