10d3f1ce1c05e21e289a0d68728c8fa8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10d3f1ce1c05e21e289a0d68728c8fa8_JaffaCakes118
Size

244KB
MD5

10d3f1ce1c05e21e289a0d68728c8fa8
SHA1

b9919a7a2c77b79c37790a6909ba523f7062ec80
SHA256

6c8d3c0c22040d70b0c157c1e93f6c71e37ba6723305216c04c5c0e1abc5cd97
SHA512

702e0080a96b424a0b4365eeafe26747bc93e0e2f84df71ac07b31161e8f2c6ed3689467b5c93ecc617ae3f22550d40412f72c28f96232f2fdf7b2c367683553
SSDEEP

6144:1k9dI3VI1Cin6gdtf4HSFNzeMRoj9PFYUDSthQ3LNJCRRrOrkwn:mTIlINf8KzfkPFYsHC3rOYwn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10d3f1ce1c05e21e289a0d68728c8fa8_JaffaCakes118

Files

10d3f1ce1c05e21e289a0d68728c8fa8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

578efccbd440528d713563eccce9ee52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupIterateCabinetW

ole32

CoUninitialize
CoInitializeEx

shell32

ShellExecuteExW

user32

wsprintfW

kernel32

GetModuleFileNameW
lstrcpyW
SizeofResource
GetLastError
WaitForSingleObject
DeleteFileW
CloseHandle
GetTempPathW
GetStartupInfoW
GetExitCodeProcess
ExitProcess
GetModuleHandleW
FindResourceW
LoadResource
CreateFileW
LockResource
WriteFile

Sections

.rdata
Size: 1024B - Virtual size: 822B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ