13eee3c357fbd42b3dc1f6961de0df4b_JaffaCakes118 | Triage

Sharing

General

Target

13eee3c357fbd42b3dc1f6961de0df4b_JaffaCakes118
Size

108KB
MD5

13eee3c357fbd42b3dc1f6961de0df4b
SHA1

418410ceeff5d2bc1191be03f1db4523c86d2b38
SHA256

cb5401ae974668bc39f968c7fc345c18b30853b3e42c1e82f209978834e5fd31
SHA512

cae62a0cbe616ac698ae583dd52f221559c55b8f4666eaabe223281201d7e20ebe7bcbad9b0e779dc0610a114cfcb041361a11ba4c067f0da9a7d0dfc75959c8
SSDEEP

3072:cEJRPP3RdCtSoMSQTlnjIfgJwKGtypoZTe:ci3RuSoY5E6wK0UuTe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13eee3c357fbd42b3dc1f6961de0df4b_JaffaCakes118

Files

13eee3c357fbd42b3dc1f6961de0df4b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

742c837cbcbeb17a770ad26bdf969982

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetVersion
GetModuleHandleA
GetCommandLineA
GetFileSize
ExitProcess
CloseHandle
GetCurrentDirectoryA
GetEnvironmentVariableA
ResumeThread
EnterCriticalSection
HeapSize
GetFileAttributesA
SetLastError
GetExitCodeThread
DeleteAtom
GetStdHandle
SetLastError
SetEndOfFile
DeleteFileA
CreateFileA
WaitForSingleObject
SetFileAttributesA
IsBadReadPtr
FindAtomW

cryptui

LocalEnroll
DllUnregisterServer
CryptUIWizImport
WizardFree
CryptUIWizBuildCTL
WizardFree
CryptUIWizDigitalSign
CryptUIWizExport
CryptUIDlgFreeCAContext
CryptUIStartCertMgr
LocalEnrollNoDS
DllRegisterServer
CryptUIDlgViewContext

uniplat

UmPlatformInitialize
UmPlatformInitialize
UmPlatformInitialize
UmPlatformInitialize

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ