a23b11d6d67d11e67b501ce879f635b5_JaffaCakes118 | Triage

Sharing

General

Target

a23b11d6d67d11e67b501ce879f635b5_JaffaCakes118
Size

273KB
MD5

a23b11d6d67d11e67b501ce879f635b5
SHA1

a9b50e4ba864f857c0d56b5b8fe58aab0a6e2c39
SHA256

342869e56a5f0734ec6c62bf4c210f25ae5778af5ff5240f5d9c6aac557a8efc
SHA512

8cca2ea4da6cb46889a7a5afee1f9c0e59ddfbedc82c62b5e27185349a190289b487c18f6261a13eadcc2a341751ae3d26fc8219e99772dbbb18ef2dcca118a5
SSDEEP

6144:LhDcz4kXPGYi4lPL+mHnqri2KmfzhvKZs7UwQ:LhMOYlJqri2K4BX7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a23b11d6d67d11e67b501ce879f635b5_JaffaCakes118

Files

a23b11d6d67d11e67b501ce879f635b5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

80dc269b64602a968b48040a269c9b02

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetCurrentThread
BaseInitAppcompatCacheSupport
MulDiv
GetSystemDirectoryW
GetLastError
GlobalFree
LoadLibraryExW
MultiByteToWideChar
EnumResourceTypesW
IsDebuggerPresent
CreateMailslotA
RaiseException
lstrlenA
SetUnhandledExceptionFilter
FreeLibrary
GetTickCount
FormatMessageA
GlobalUnlock
UnhandledExceptionFilter

gdi32

GetStockObject

oleacc

AccessibleChildren
CreateStdAccessibleProxyA

Sections

.text
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ