36cc28fc547fa3de98c695a303cae560_JaffaCakes118 | Triage

Sharing

General

Target

36cc28fc547fa3de98c695a303cae560_JaffaCakes118
Size

122KB
MD5

36cc28fc547fa3de98c695a303cae560
SHA1

8e25450efc26ffa9693e16598302db694508c8a6
SHA256

e3704f0fff342a5d2053dc8ea8a78dab34e583d625c43bdee6f9a7fab8de9310
SHA512

1455a62ce3a982e615c00e47e1c3e6af2e386f97d15779fa10900a890944fd1692ee466c17d25fcdeb0d64c82638c9d07249b13e1b3cb271a1087ed6ac376a3e
SSDEEP

3072:oCQy1XBHUEB3fJZzvE2p//VMliAWXhxsp:F5NBx1M29/VMEAWXfG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36cc28fc547fa3de98c695a303cae560_JaffaCakes118

Files

36cc28fc547fa3de98c695a303cae560_JaffaCakes118
.exe windows:4 windows x86 arch:x86

364b6ea79d1c023cd3554d095c535e1f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

BuildTrusteeWithNameW
CryptAcquireContextW
CryptEnumProviderTypesW
CryptSignHashW
ElfBackupEventLogFileW
ElfOpenEventLogW
RegOpenKeyA
FreeSid

gdi32

GetBoundsRect
GetCharacterPlacementW
GetMetaRgn
GetDIBColorTable
GetFontAssocStatus
GetMetaRgn

user32

CheckMenuRadioItem
CreateIcon
DragDetect

Sections

.flat
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 75KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE