JaffaCakes118_77e4a09f51ac15c49efe64f2ccf1ad3c | Triage

Sharing

General

Target

JaffaCakes118_77e4a09f51ac15c49efe64f2ccf1ad3c
Size

273KB
MD5

77e4a09f51ac15c49efe64f2ccf1ad3c
SHA1

40e8706615d0467049a2cd959bb18313f37e15d9
SHA256

25cef316d6324015889af288605d17cf6d046c6acc7196144f2f4022bf48e1d1
SHA512

55b53e0ef9275b54ee9bde11fb5798b9da202c7a7acca5ad1f348adab3d130cf0fa88cfc5c73110cf0a1b9a7e275ca069839bff58e6baa450922a6d39b20a2a7
SSDEEP

6144:N8VaXlr/CI6k22BkRreQb1fz5KZikZfedTyTDF:z7TL4heQptwjdeJk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_77e4a09f51ac15c49efe64f2ccf1ad3c

Files

JaffaCakes118_77e4a09f51ac15c49efe64f2ccf1ad3c
.exe windows:4 windows x86 arch:x86

a95750d2260c7ee52379de8b90760f64

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
GetProcAddress
FindFirstFileW
GetAtomNameA
lstrlenW
GetPrivateProfileStringW
Sleep
GetModuleFileNameW
MultiByteToWideChar
LoadLibraryW
LoadLibraryA
LoadResource
FreeLibrary
DeleteCriticalSection
GetPrivateProfileIntW
LockResource
EnumResourceTypesW
GetModuleHandleW
GetSystemDirectoryW
GetTickCount
WritePrivateProfileStringW
FindClose
InitializeCriticalSection
GlobalSize
GetVersionExA
GetVersionExW
GetLocaleInfoW

newdev

UpdateDriverForPlugAndPlayDevicesW

oleacc

LresultFromObject
CreateStdAccessibleObject
CreateStdAccessibleProxyW

Sections

.text
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ