1277c0bfc8ecdd51009978c87c682f6e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1277c0bfc8ecdd51009978c87c682f6e_JaffaCakes118
Size

198KB
MD5

1277c0bfc8ecdd51009978c87c682f6e
SHA1

948b31fc5f3b1bff2adcaf587db1916ef4c5351a
SHA256

cb91041a2bdcdf4f7560ac1e3ee8270f33b9a394f9dd2fa3b68be56c227a14bd
SHA512

b319043e0e265ab554c8a809d9a163a5fe346b271a5bbcee2c1d1185364d26955846db9f0515fb3adca23e9476f1e046b1403876c4bd7a8628085a7cfe64ea7c
SSDEEP

6144:Fa1nF7pHFQzKFDHOBYsx28r/LtWbtMyzX05sKkX:FCFLl9uZr/pWZxYmKm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1277c0bfc8ecdd51009978c87c682f6e_JaffaCakes118

Files

1277c0bfc8ecdd51009978c87c682f6e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2909feac6a3ef52ebd3c86e87f15fddd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
CreatePipe
GetCommandLineA
GetFileAttributesW
FindClose
GetCurrentThreadId
GetFileType
GetStdHandle
WriteFile
CloseHandle
FatalExit
GlobalSize
ClearCommBreak
GetDriveTypeW
GetModuleFileNameA
WaitForMultipleObjects
lstrlenW
GetCurrentDirectoryW
HeapCreate
GetStdHandle
HeapFree
GetModuleHandleA
Beep
IsBadWritePtr
CreateSemaphoreA

cryptui

CryptUIStartCertMgr
LocalEnroll
LocalEnrollNoDS
CryptUIWizDigitalSign
DllUnregisterServer
CryptUIDlgViewContext
CryptUIDlgFreeCAContext
WizardFree
CryptUIWizExport
WizardFree
CryptUIWizBuildCTL
DllRegisterServer
CryptUIWizImport

iyuv_32

AboutDialogProc
AboutDialogProc
AboutDialogProc
AboutDialogProc

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE