53f3591762ec49e9be3483922c228fbb_JaffaCakes118 | Triage

Sharing

General

Target

53f3591762ec49e9be3483922c228fbb_JaffaCakes118
Size

163KB
MD5

53f3591762ec49e9be3483922c228fbb
SHA1

7b5d3b701287cb7a2508b9e45c8fa1401300d475
SHA256

a01cb99b836799f7d06e99548868e50a61879bd5c72c6f6e29b713d7dff2b80f
SHA512

047191b86ade765641057993df0ad322fed536c94c485892d47da25456bb6a91a908aad8f7378bfb471b21f0f96b0126ff48f3a39a5977022da3da03eb9810d0
SSDEEP

3072:shPP6uqulmpjtbhzYtJxvQFt5YT3GNFRP3DAhYuHQ:cPCETPxvMt5YT3GhvDA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53f3591762ec49e9be3483922c228fbb_JaffaCakes118

Files

53f3591762ec49e9be3483922c228fbb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

90a59889acf016acefc1cc1bb4df05f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetMalloc
CoInitializeSecurity
CoQueryProxyBlanket
CoInitializeEx
CoUninitialize
CoTaskMemFree
CoCreateInstance
CoSetProxyBlanket
StringFromGUID2

rpcrt4

UuidCreate

kernel32

GetCalendarInfoW
LeaveCriticalSection
SetEndOfFile
RaiseException
GetCPInfo
RtlUnwind
ExitProcess
HeapDestroy
HeapSize
GetStartupInfoA
SetFilePointer
GetACP
VirtualFree
EnumResourceNamesA
DeleteCriticalSection
FreeEnvironmentStringsA
IsValidCodePage
GetOEMCP
InitializeCriticalSection
HeapCreate
EnterCriticalSection
HeapReAlloc
ReadFile

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ