f1427f067f387dbfbc1e5f12b39a017f_JaffaCakes118 | Triage

Sharing

General

Target

f1427f067f387dbfbc1e5f12b39a017f_JaffaCakes118
Size

167KB
MD5

f1427f067f387dbfbc1e5f12b39a017f
SHA1

47f08cd4604b99ebb73344358a38989ea1984ec9
SHA256

2f19a6bdb0d94422a7b0d3ef587cec244fb537c147eb28ea5c891cd763af0c80
SHA512

0155f6c14fbbc6344ad3381d262284ba959f196062d7f94e1f10e9a89eff67b48c00402061659506fb0db2c246c2121750b95d5e4a386effd1cf6a4fefd48690
SSDEEP

3072:cdEg6SIBWURMoMEPF4BUAB0fl/J7Xe1nZwZxGZYUJLtZSpO:uEgCMoMoqUG0fZ1OJZEGDVtZSpO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f1427f067f387dbfbc1e5f12b39a017f_JaffaCakes118

Files

f1427f067f387dbfbc1e5f12b39a017f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0bcc980e484a6ff95556477ca85c398b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetMessageW
DispatchMessageW
GetDC
SetTimer
SendMessageW
TranslateMessage
PostThreadMessageW
CharNextW
CharUpperW
KillTimer
wsprintfW
UnregisterClassA

shlwapi

PathCombineW
PathFileExistsW

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoCreateInstance
CoTaskMemAlloc
CoUninitialize
CoInitialize
StringFromGUID2
CoRevokeClassObject
CoTaskMemRealloc
CoRegisterClassObject
CoTaskMemFree
StringFromCLSID

kernel32

GetCPInfo
WideCharToMultiByte
lstrcpyW
GetLastError
GetTickCount
CheckRemoteDebuggerPresent
DeleteCriticalSection
FindClose
EnumResourceTypesA
lstrcmpiW
MultiByteToWideChar
GetACP
LockResource
lstrlenW
InitializeCriticalSection
lstrcpyW
GlobalAlloc
OutputDebugStringW
GlobalFree
lstrcpyA
GetModuleHandleW

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ