41aa528a9fa6b5ea92c0bb03150cb047_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41aa528a9fa6b5ea92c0bb03150cb047_JaffaCakes118
Size

169KB
MD5

41aa528a9fa6b5ea92c0bb03150cb047
SHA1

d30892081f54fe3cdbf1ad56dea456209b1ae70c
SHA256

b88d9eb3ee8be69d283cd7d65e44fb09d602f6e6ec1b782bda7e27f8d3740425
SHA512

050632a59c32ea8fe457f66aad12a0a11c2a9f94de07ed63aa91acad4c9dc76d27d22a0088f89acd986c976bd8786ff7e3ef808ab1fc953bc75b005e8a0f855a
SSDEEP

3072:SHZ8P88L24bBcq9oi1Ajjp/NekZlWblKZV6IrxWnefVLXJv5Kv:90u1Nz1mpFfZlWblKaIrgi9XP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41aa528a9fa6b5ea92c0bb03150cb047_JaffaCakes118

Files

41aa528a9fa6b5ea92c0bb03150cb047_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a420afb3e6cb535a332cfc1b5a5d73b8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

wsprintfW
GetDC
TranslateMessage
GetMessageW
CharNextW
CharUpperW
KillTimer
SetTimer
PostThreadMessageW
DispatchMessageW
SendMessageA
UnregisterClassA

kernel32

GetLastError
lstrcpyA
FindClose
LockResource
GetCPInfo
GetACP
GetProcessAffinityMask
GlobalAlloc
MultiByteToWideChar
EnumResourceNamesW
lstrcpyW
lstrcpyA
GlobalFree
GetTickCount
FreeEnvironmentStringsW
InitializeCriticalSection
lstrcmpiW
lstrlenW
OutputDebugStringW
WideCharToMultiByte
GetModuleHandleW

shlwapi

PathCombineW
PathFileExistsW

ole32

CoTaskMemFree
StringFromGUID2
CoUninitialize
CoRegisterClassObject
CoCreateInstance
CoTaskMemAlloc
CoRevokeClassObject
CoTaskMemRealloc
CoInitialize
StringFromCLSID

Sections

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ