cf9a4e373b940f0c2f0ca9f67b9670d9_JaffaCakes118 | Triage

Sharing

General

Target

cf9a4e373b940f0c2f0ca9f67b9670d9_JaffaCakes118
Size

181KB
MD5

cf9a4e373b940f0c2f0ca9f67b9670d9
SHA1

505d13eb1f7f399f3b59e9a892da2fa794da74d6
SHA256

b5a6fd94288252ba8849b0e2a626c072b037a8eb6dd0c3e82d631969b6f4fda2
SHA512

c56e799ffa79a42dc1798dbfa12b477e2f24596243ba7e9d9616fe05dd827107a8aca2421d32eb0111880cec773f09137c6aa99d23e762481a63b78287d753f9
SSDEEP

3072:DYV8IYFjFmPmGAxJDMiSK9+JWf/6OmE0FsaoPdzvg6JfR7oCr3jL:DUnmYP8f/pf/6DFsaizv1R7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf9a4e373b940f0c2f0ca9f67b9670d9_JaffaCakes118

Files

cf9a4e373b940f0c2f0ca9f67b9670d9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

58f8ccaec495e2cd75c9dbae847fd0be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

kernel32

GetProcessHeap
GetCalendarInfoW
HeapAlloc
GetThreadLocale
LoadLibraryW
GetLocaleInfoA
HeapFree
CreateFileW
HeapDestroy
SystemTimeToFileTime
EnumResourceNamesA
WriteFile
FindFirstFileW
HeapReAlloc
HeapSize
GetSystemTime
LoadLibraryExW
GetStdHandle
CloseHandle
lstrcpynW

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ