3fc0f93511ed6f46bc434dbe7d94c0c5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fc0f93511ed6f46bc434dbe7d94c0c5_JaffaCakes118
Size

887KB
MD5

3fc0f93511ed6f46bc434dbe7d94c0c5
SHA1

497ab28e8876ece8b667491773d727a812f33a11
SHA256

74ca8863a7cc4fe589626f5bbe84bcfc66c94434555f63cc75c20f3300804a7a
SHA512

0b38d691ac54b82b536edeeb2d90af65eb16d268590baea6dcd440aea17f00378e61e123d13e11c1cd7c699eadfd1a2fe203ed7a0d43118a3119b69bcd45b2a9
SSDEEP

24576:HbHAL29pq/BlsMJPSuXivc+rXGPwYhTs72kh:HbHALMpq/B1qpUiXGPwYNs7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fc0f93511ed6f46bc434dbe7d94c0c5_JaffaCakes118

Files

3fc0f93511ed6f46bc434dbe7d94c0c5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

67494c8f7bd4d8c35fe89911e229ef22

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
HeapAlloc
HeapCreate
GetProcAddress
HeapFree
RtlUnwind

user32

wsprintfA
SetWindowLongA
CharLowerBuffA
CreateWindowExA

advapi32

RegDeleteKeyA
RegOpenKeyA
RegDeleteValueA
RegCloseKey

ole32

CoRegisterClassObject
CoInitializeEx
CoCreateInstance

Sections

.text
Size: 471KB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 294KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 68KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE