1055fcc161d5da5a094a38c59c53dde0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1055fcc161d5da5a094a38c59c53dde0_JaffaCakes118
Size

183KB
MD5

1055fcc161d5da5a094a38c59c53dde0
SHA1

0cab2f87a09549ba2fc6aae84077f550c2a8ef72
SHA256

6ff704330dab44f9938472b8099fd6aea3f0606878d3d420cfd8b7e8b39b8871
SHA512

0258a0225a2e64b8d750c07fa1b64e7be2b691822f6f256c30ce598ba6cefeb8e3513cd768fffd12f13cfe9f890ccf730f6c6c19e468a9fc12b54ee63363fc42
SSDEEP

3072:xI6Sp7p3L0M56lGOEKVDZMymGzs5sTzjC8LVV7hANnVQUq/6GvPNQLTYBUlkt:xC7dT56l7HVlMymGwoygVV2NVXqyuP6V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1055fcc161d5da5a094a38c59c53dde0_JaffaCakes118

Files

1055fcc161d5da5a094a38c59c53dde0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8965a530e672d71152a59f53d164aaf8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

AlphaBlend
TransparentBlt

kernel32

FlushInstructionCache
GetCalendarInfoA
SetCurrentDirectoryW
FindResourceExW
SetFilePointerEx
GetPriorityClass
LockResource
EnumResourceNamesA
ExitProcess
FindFirstFileW
CreateFileW
GetProcessAffinityMask
GetCurrentDirectoryW
GetLocalTime
LoadResource

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ