153dd07b833218467ce4d18cf3d1a788_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

153dd07b833218467ce4d18cf3d1a788_JaffaCakes118
Size

186KB
MD5

153dd07b833218467ce4d18cf3d1a788
SHA1

6cfc2ea87448528937e8953eed853f51b7bff4fc
SHA256

b780a463a2865d80b8781b84ecc8e5e41f4196e7d0fd85c554f84ea9fb8930a5
SHA512

4c390e73ee2c444cb69623acab8fae3795314f5e98f6741815deeec758481dd8c30848d25f2f1b2533083034cef496cabf5fe50df97624bfb189038cab6b8a80
SSDEEP

3072:yuxhPGktjaQTEvCwaGsZvHoqW+DQz/AKUAcBaScVNCewMk0pNCKmBO8KWBK8A:XPtqKPGLqW+DQz4pSNCeLkwCK6zLA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
153dd07b833218467ce4d18cf3d1a788_JaffaCakes118

Files

153dd07b833218467ce4d18cf3d1a788_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0d005f2e83268821e42265938fde2b8f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleSave
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
StringFromGUID2
CoTaskMemRealloc

kernel32

GetLastError
GetSystemInfo
SetFirmwareEnvironmentVariableW
LCMapStringA
EnterCriticalSection
LocalAlloc
LeaveCriticalSection
SetStdHandle
InitializeCriticalSection
DeleteCriticalSection
EnumResourceTypesA
GetShortPathNameA
GetModuleHandleA
LocalFree
LoadLibraryA
LCMapStringW
GetProcAddress
GetStringTypeA

gdiplus

GdipCloneImage

wininet

InternetReadFile
InternetOpenA
InternetOpenUrlA
InternetCloseHandle

winmm

timeGetTime
timeSetEvent

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ