JaffaCakes118_5790b8365cafa2868f4fe4af4b90ed21 | Triage

Sharing

General

Target

JaffaCakes118_5790b8365cafa2868f4fe4af4b90ed21
Size

187KB
MD5

5790b8365cafa2868f4fe4af4b90ed21
SHA1

52c2f9a4aef7bf8b7d700c631b148b14cbef59a6
SHA256

4e13b1d5ab5234f228658e47f7d02be93a172e01483bcc27c041516fd128b354
SHA512

1a58acc5f58fb233eefcc670a808b4284cb2d479312ed6557f32b6421b8d8e9cc3c8ed031c1252af3adf651667073e7d5d152dac532f884701136895752c67d9
SSDEEP

3072:7O/Rpeq71qplZ2+0wk3ilnB68X0YRNfBRdlQH03+7DFNEbS6LjamDlL6WS:7O/R9clZ2kiqNBRNfB5SPFSS63a8u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_5790b8365cafa2868f4fe4af4b90ed21

Files

JaffaCakes118_5790b8365cafa2868f4fe4af4b90ed21
.exe windows:4 windows x86 arch:x86

861de0a6aacbee3fd7af58fb9320bcb1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mciSendCommandA
sndPlaySoundA

shlwapi

PathAddBackslashA

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

kernel32

HeapCreate
GetModuleFileNameA
AddAtomA
FreeEnvironmentStringsA
TlsFree
HeapSize
SetLastError
GetFileType
SetHandleCount
GetStartupInfoA
SetEndOfFile
GetVersionExA
EnumResourceNamesA
FreeEnvironmentStringsW
TlsAlloc
TlsSetValue
TlsGetValue
TerminateProcess
VirtualAlloc
GetCurrentProcess
GetEnvironmentStringsW
GetLocaleInfoA
GetEnvironmentStrings
InterlockedExchange
IsBadStringPtrW
GetACP
GetStdHandle
IsBadWritePtr
VirtualFree
GetSystemInfo
UnhandledExceptionFilter

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ