53432e58c1090e5a26087f7375bba775_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

53432e58c1090e5a26087f7375bba775_JaffaCakes118
Size

305KB
MD5

53432e58c1090e5a26087f7375bba775
SHA1

4a55e94059357bd6f64dde56e1c1b6885f85c82d
SHA256

8f6a0b2d06860702d28bc47b94899bfbf9fa36deb0fc43b0eb9f6ef04ddd19d3
SHA512

c37d354e75b3b8192b3db948ad22a263b45012dadf46fe81be8d9daa02e2602984cdb7a70f2b1895ebf0938ccfa5c8787843b58ff95cd30352f1afe087e92d09
SSDEEP

6144:8e2qmMm46YjYH9i4ZJC23dKMDJe+AiRmyrgYpYEScwo8v:8Dqxmt6YH93ZM23d3DsyrgYecwo8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53432e58c1090e5a26087f7375bba775_JaffaCakes118

Files

53432e58c1090e5a26087f7375bba775_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8ab36f3510e133c0a15552fea76efb3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetExitCodeThread
CloseHandle
GetPrivateProfileIntW
CloseHandle
GetFileAttributesW
HeapCreate
GetPrivateProfileSectionW
lstrcmpW
lstrcmpiW
GetFullPathNameA
GetModuleHandleA
GetModuleHandleW
GetFullPathNameA
GetPrivateProfileIntW
ReleaseSemaphore
CreateEventW
CreateDirectoryW
GetEnvironmentVariableA
GetDiskFreeSpaceW
WaitForMultipleObjects
GetVolumePathNameA
OpenMutexA

certmgr

DllRegisterServer
DllGetClassObject
DllCanUnloadNow
DllUnregisterServer

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ