1595c2a9b47cc32fcebb47e63e416290_JaffaCakes118 | Triage

Sharing

General

Target

1595c2a9b47cc32fcebb47e63e416290_JaffaCakes118
Size

282KB
MD5

1595c2a9b47cc32fcebb47e63e416290
SHA1

e08cbbe3b87c53ba49eec7d0c5d3359c14017a32
SHA256

d847b39df7c3c16839e0fbe9a07187fce39b7ca9521201be82d1bcacd2b60c04
SHA512

35b8b985b8dedfe99a388b17170541d6c983571f5d11239fce900200f80ef201a41779971fe5c3142aa028a7525553f200da089a6184ad65b7a1fc591f6751b6
SSDEEP

6144:y/Kod5J1iij6ijaGxmCAaMSbGqJ92rnxWXYbG:M7DD2EESN2rBq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1595c2a9b47cc32fcebb47e63e416290_JaffaCakes118

Files

1595c2a9b47cc32fcebb47e63e416290_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9c106c7ca91c1f2a33d257efa671c72

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
LoadLibraryA
GetProcAddress
DeleteCriticalSection
HeapReAlloc
HeapAlloc
ExitProcess
SetEvent
CreateEventA

user32

LoadCursorW

advapi32

RegOpenKeyA

Sections

.rdata5
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata4
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata3
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text9
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ