37d6f700c94d0e33e8b00756526ecbaf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37d6f700c94d0e33e8b00756526ecbaf_JaffaCakes118
Size

111KB
MD5

37d6f700c94d0e33e8b00756526ecbaf
SHA1

6a26e95767610c33619055d71c1640f448f50017
SHA256

ee8e80f9be7be02d78dbd2c51e411680d6ee11375de3dbcd08e20220afa62114
SHA512

7559eba5f91cc77d20ae6c77c0ce9cbd9800bbad752ba2d1559a2dfb45e9cd9359798b7a6fa006cb5816db27d0816388a436800d04f978e4689e44848a5a6a42
SSDEEP

3072:CU1aTKq5zYgCuxUU8P6p0sgYPE/NkNjFbeZT9k:Za2uCu98vsgoSNkPaV9k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37d6f700c94d0e33e8b00756526ecbaf_JaffaCakes118

Files

37d6f700c94d0e33e8b00756526ecbaf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

95fc51df382cf874e52054e9f42d6cb9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
DeleteFiber
DuplicateHandle
EnumSystemCodePagesA

shell32

ILFree
SHLockShared
SHIsFileAvailableOffline
SHGetShellStyleHInstance

urlmon

CopyBindInfo
CopyStgMedium
CreateURLMoniker
FaultInIEFeature
PrivateCoInstall
ReleaseBindInfo

comctl32

MenuHelp
PropertySheetA
ImageList_Merge
ImageList_SetBkColor
ImageList_Duplicate
ImageList_Merge

Sections

.text
Size: 63KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE