JaffaCakes118_3a57882a1c934a13be0a29a9d660bc4a | Triage

Sharing

General

Target

JaffaCakes118_3a57882a1c934a13be0a29a9d660bc4a
Size

168KB
MD5

3a57882a1c934a13be0a29a9d660bc4a
SHA1

e6f7446696dc8116efd51692f5ebc66adb2e3a92
SHA256

136b06a2ee6f1c5b6419cc4c37fd85b0d0903550e3839698d9a16ef2572776a2
SHA512

0162c84b1965a1ad00d97eb8342e0aba1f7213fc833163b98fe3c7f3813c90d3eaa19d8edb154ec71e4f4e76248272c84f8e07d82b33d89f6f826406eb43ead1
SSDEEP

3072:M4eoU6nPV+fNdW9np9fJDkU5xy4h0HWcrtEDrhFyxi1k0It:J1U6PV+f7WpRPxrgSrhFmiG0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_3a57882a1c934a13be0a29a9d660bc4a

Files

JaffaCakes118_3a57882a1c934a13be0a29a9d660bc4a
.exe windows:4 windows x86 arch:x86

ab2fabdf61f4d588be0cc55e75fb93dd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceA
SizeofResource
GetCalendarInfoW
CloseHandle
HeapFree
LockResource
FindResourceExA
GetModuleHandleA
HeapAlloc
GetSystemTime
CreateFileW
EnumResourceNamesA
lstrcpynW
GetProcessHeap
FindFirstFileW
LoadLibraryExW
LoadLibraryW
LoadResource
GetVersionExA
WriteFile
SystemTimeToFileTime
HeapDestroy
GetStdHandle
LeaveCriticalSection
TerminateProcess

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

oleacc

LresultFromObject
CreateStdAccessibleObject

shlwapi

PathFileExistsA
PathFileExistsW
StrStrIW

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ