42e96f24a24af263cd0573bcb1875b53_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42e96f24a24af263cd0573bcb1875b53_JaffaCakes118
Size

124KB
MD5

42e96f24a24af263cd0573bcb1875b53
SHA1

c19265c61fd010a0e01a478b2fe335ec905f789d
SHA256

e0cdc8b2224ef5e7db9c92510806d7f6424a84487de4f834c217f7c80555dd41
SHA512

1fc77b8d45eeb7709d810140918b8822d0b8520db600dd3b9e98f923bef69510a4c81afd028785fdc80667f7af1946a2dd4837a50c1897cfbddf2751dabe69c6
SSDEEP

3072:BK9R+vFdBRalwKFxMO4UzT8SnX5r6D4iW:8ovDnarLk4g6XcDQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42e96f24a24af263cd0573bcb1875b53_JaffaCakes118

Files

42e96f24a24af263cd0573bcb1875b53_JaffaCakes118
.exe windows:4 windows x86 arch:x86

766197461e27b30669e08442d7d124c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetCurrentDirectoryA
CompareStringA
GetProcAddress
VirtualAlloc
GetTickCount
LoadLibraryA

user32

TranslateMessage
GetMessageA
DispatchMessageA

oleaut32

VarRound

ole32

CreateObjrefMoniker

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ