9f37efc526ff3b959389520688292e20_JaffaCakes118 | Triage

Sharing

General

Target

9f37efc526ff3b959389520688292e20_JaffaCakes118
Size

175KB
MD5

9f37efc526ff3b959389520688292e20
SHA1

f24defedb1abd4ee05e0a89030a3529b06dfb37a
SHA256

7dd3ea069bbb1efd94479f96ea5bbe3e8d10190e7b7008dd28a7a85ecb4ccb00
SHA512

dc97b44bb635969883590d812126cc244554a7c56ce16fb3028c7702c0a58db1efdf1269470f6076a25f2f04b51a58c34fb39dd686850088204cf72894f8210a
SSDEEP

3072:phSX+Ax0I7UfnHB+cAwqrlJ6fKdSZsak2cc742LS25892FVyyuUagvm:EROIAfnHEwGCfKdMbp9m25bnluae

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9f37efc526ff3b959389520688292e20_JaffaCakes118

Files

9f37efc526ff3b959389520688292e20_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9c171170bf4cb45f674ee762123a0371

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetAtomNameW
RtlUnwind
IsValidCodePage
GetOEMCP
HeapSize
HeapReAlloc
SetFilePointer
VirtualAlloc
WriteConsoleA
GetTimeFormatA
GetCPInfo
GetACP
EnumResourceNamesA
MultiByteToWideChar
GetLocaleInfoA
GetDateFormatA
SetStdHandle
GetCPInfoExA
TlsGetValue
TlsAlloc
GetConsoleOutputCP
TlsSetValue
RaiseException

shlwapi

UrlUnescapeW
PathAppendW
SHCreateStreamOnFileEx
PathIsFileSpecW
PathIsContentTypeW
PathCreateFromUrlA

occache

FindControlClose

Sections

.text
Size: 84KB - Virtual size: 475KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ