JaffaCakes118_6a93bd44caa7387d8820ba4412f5ed67 | Triage

Sharing

General

Target

JaffaCakes118_6a93bd44caa7387d8820ba4412f5ed67
Size

183KB
MD5

6a93bd44caa7387d8820ba4412f5ed67
SHA1

24d417b6f246d3f486a44321b6cb3b2b8a6882c6
SHA256

751c0ca76e4bae9f4d869d4aae22b374dffaef8f43abff58ee3e1945140c90d7
SHA512

c7dd8f142d916a02bb20a18c56100689de177185bc49f50ad7dab4189fc6e48cc0eb9c8359a3d3405579d51f15bde3e247be1d5bac647d33b09e4922124bb11c
SSDEEP

3072:d3rKTTJ3YQGhQTvjFtvF/57Bg+F4p8Hj7zRgu82PC6nlLkwKet4uRzSD5dYux4EO:RATqQGiTLFNFx7BhVz2J23LkwDOuOTYX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6a93bd44caa7387d8820ba4412f5ed67

Files

JaffaCakes118_6a93bd44caa7387d8820ba4412f5ed67
.exe windows:4 windows x86 arch:x86

e9747f5ddb9df49d7861405dc3dbdefa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

FindResourceA
CloseHandle
GetCalendarInfoA
LockResource
GetVersionExA
SystemTimeToFileTime
HeapAlloc
GetStdHandle
SizeofResource
GetProcessHeap
lstrcpynW
LoadLibraryW
EnumResourceNamesA
GetModuleHandleA
FindResourceExA
CreateFileW
FindFirstFileW
WriteFile
LoadResource
HeapDestroy
LeaveCriticalSection
LoadLibraryExW
HeapFree
GetSystemTime
TerminateProcess

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ