28dbcdbda782bc699cce35b73f32cf0b_JaffaCakes118 | Triage

Sharing

General

Target

28dbcdbda782bc699cce35b73f32cf0b_JaffaCakes118
Size

137KB
MD5

28dbcdbda782bc699cce35b73f32cf0b
SHA1

25842b18e8a5480817e77c58c2612e6b31732692
SHA256

e15614823b6d94a1375a2c215086dc29386162fe63c50a524ac2b9bdbb5bc7aa
SHA512

38c5f9b0c2f9c1e31cd92058d69b3a348096644f74bffd73a04e9de4d8aa8a9a81a61d393243c1b93949d905867cef191344ba0e0379d06c98d02abd946c28e7
SSDEEP

3072:YKYhdU1eQ102Fxw/cm0pXxrcGweUVbPG:YVhQO2jPvNa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28dbcdbda782bc699cce35b73f32cf0b_JaffaCakes118

Files

28dbcdbda782bc699cce35b73f32cf0b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a03de1b2a9583fb9e71bf4bffc9e5336

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

LeaveCriticalSection
GetLocalTime
CloseHandle
CreateEventA
GetThreadPriority
WaitForSingleObject
CreateSemaphoreA
DeleteCriticalSection
ReadFile
FreeEnvironmentStringsA
FindFirstFileW
GetLastError
SetEvent
GetDriveTypeW
Sleep
EnumResourceNamesA
EnterCriticalSection
WriteFile
InitializeCriticalSection
ExitProcess
FindClose
ReleaseSemaphore
GetSystemTimeAsFileTime
GetStartupInfoA
SetEndOfFile
WaitForMultipleObjects
SetFilePointer
CreateThread
LoadLibraryA

Sections

.text
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ