JaffaCakes118_16d415398c5443ce76a48be2df745722 | Triage

Sharing

General

Target

JaffaCakes118_16d415398c5443ce76a48be2df745722
Size

274KB
MD5

16d415398c5443ce76a48be2df745722
SHA1

98e4340a22a7b9d6811e33a5d3b48560cfb81e8c
SHA256

17c956c2f179d1f91d5c5c95923f4d1c7db13b18ec9bbd3e66d16d4ce3623979
SHA512

e35fba808cf332d23c9a7a4b2b85f22db2031d0543512ff7b250b233b2493b25328fdb749be7c40f60f45d71f8a9fa0a54447ff5f7cf13e0d683bc0612e41b10
SSDEEP

6144:q7uTmMLFpJa9x7nIUel6f1OjTtkrY2czN+RLQqQtNaz:q7uaMLrmx7nIUel6fsjmr9QWEqwNaz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_16d415398c5443ce76a48be2df745722

Files

JaffaCakes118_16d415398c5443ce76a48be2df745722
.exe windows:4 windows x86 arch:x86

480d93685bc28f356775829e99beda27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
GlobalGetAtomNameA
GetCurrentProcess
GetCurrentProcessId
RtlUnwind
IsDebuggerPresent
LeaveCriticalSection
GetLocaleInfoA
TerminateProcess
WriteConsoleA
LoadLibraryA
WriteFile
SetUnhandledExceptionFilter
IsValidCodePage
FreeLibrary
EnumResourceNamesW
GetOEMCP
GetConsoleOutputCP
GetCPInfo
MultiByteToWideChar
GetStringTypeA
GetTimeFormatA
UnhandledExceptionFilter
EnterCriticalSection
SetFilePointer
HeapSize
InitializeCriticalSection
HeapReAlloc
GetSystemTimeAsFileTime
VirtualAlloc
SetStdHandle
GetDateFormatA
RaiseException

shlwapi

SHCreateStreamOnFileW
PathAppendA
PathIsFileSpecA
SHCreateStreamOnFileEx
PathIsContentTypeA
PathCreateFromUrlW

rpcrt4

RpcStringFreeA

Sections

.text
Size: 138KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ