JaffaCakes118_17697460f42f0f2917d33641755d8b86 | Triage

Sharing

General

Target

JaffaCakes118_17697460f42f0f2917d33641755d8b86
Size

179KB
MD5

17697460f42f0f2917d33641755d8b86
SHA1

a40339fe7504c246c4a4f0315b5913cebc79d7ac
SHA256

27bd9e1db8e910a64403c6dd98e218670ae43a20291e499f757edc568bbaca82
SHA512

7e70cf2efb72d9e274677ed29a7e156fb968a836f9fbe446f9ee934664cd46e02730c848ed92a4d5dce54a0427e53d222bd100035d0fb4aa8c5b945ec36cdd6d
SSDEEP

3072:M1OS7e7LDSy/8ppC9zgAiaXS77PrCDLdyL+r1oZNPy:MES7PRppch7iCDEL+eZZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_17697460f42f0f2917d33641755d8b86

Files

JaffaCakes118_17697460f42f0f2917d33641755d8b86
.exe windows:4 windows x86 arch:x86

0f0731c1e714577552d87937cd25cc5d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetAtomNameA
GetCurrentProcessId
ResetEvent
GetSystemInfo
SystemTimeToFileTime
CompareFileTime
SetFilePointer
GetEnvironmentVariableA
CreateThread
WriteFile
GetSystemTime
VirtualFree
EnumResourceTypesW
GetCurrentProcess
Sleep
LoadLibraryA
GetProcAddress
LocalFree
SystemTimeToTzSpecificLocalTime
HeapFree
GetSystemDirectoryW
HeapAlloc
GetTickCount
SetEvent
GetTempPathA
OpenEventA
CreatePipe

newdev

UpdateDriverForPlugAndPlayDevicesW

oleacc

LresultFromObject
CreateStdAccessibleObject
CreateStdAccessibleProxyW

Sections

.text
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ