27bc6ece9d4e8140719343e22f3b0859_JaffaCakes118 | Triage

Sharing

General

Target

27bc6ece9d4e8140719343e22f3b0859_JaffaCakes118
Size

175KB
MD5

27bc6ece9d4e8140719343e22f3b0859
SHA1

f116c584ffb3217fe1bb094fba158089536f2ce9
SHA256

9ca363fbd5e4ef3d9777e000dfb125dbbc66a1f02bc79a068483408e163891f7
SHA512

162a231fa59d72190edc24ac46087ab821d330de5b04ae666b0404601f1a007ab12825f70fad5c215b810dffd74fff26a37ac368ee2895f2920932c8e7adee62
SSDEEP

3072:IRwAPBbcTFR9XJoRkMm3yl/i6bf8Bocq/F1DR//J6acL1zGVFfshsWITuHUF:Gnq5oRxl/i6bfqoPF1FhnTfBWsuH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27bc6ece9d4e8140719343e22f3b0859_JaffaCakes118

Files

27bc6ece9d4e8140719343e22f3b0859_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ed150bbc3ee5e13d3900b46765d3513a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FindFirstVolumeA
TlsGetValue
GetPriorityClass
HeapCreate
EnumResourceTypesW
InitializeCriticalSection
TlsFree
TlsAlloc
GetStartupInfoA
GetFileType

oleacc

LresultFromObject

user32

GetWindowInfo
RegisterClassExW
MessageBoxW
GetDC
CreateWindowExW
LoadCursorW
GetUpdateRgn
EndDialog

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.apexi
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ