JaffaCakes118_7a3602d50198515243b17e3391f032d7 | Triage

Sharing

General

Target

JaffaCakes118_7a3602d50198515243b17e3391f032d7
Size

278KB
MD5

7a3602d50198515243b17e3391f032d7
SHA1

01cef8df1d3d6ad90179e25fa448d1c57682bdaf
SHA256

2b8452506e34e3504cc408ac95674d0a3764bf8221b16d5d1225d843ad314655
SHA512

edfa2d0d34dc3dc45c9f0b4054427164e442964f5fc6f8b64d128396402d8d829d0eabbb4e054d8014368ae6ddeff7804701e69f45e94182ce3d05178acedd6f
SSDEEP

6144:QieUmo0k99H9KsfmXxtMeCDeyFx8yiRkzS8wc4qfus:6o0krdFreCamiRkac4q/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_7a3602d50198515243b17e3391f032d7

Files

JaffaCakes118_7a3602d50198515243b17e3391f032d7
.exe windows:4 windows x86 arch:x86

34c48547e6f42e0a22d2cf0afe46256f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
MoveFileW
CloseHandle
SetLastError
OutputDebugStringA
AddAtomA
FindNextFileW
GetVersionExW
SetFilePointer
WriteFile
GetFileTime
GetFileSize
GlobalUnlock
LockFile
GetDriveTypeW
GlobalSize
FindClose
DeleteFileW
GetVersion
IsDBCSLeadByte
GetACP
GetFileAttributesW
EnumResourceNamesW
LoadLibraryW
GetSystemDefaultLCID
GetModuleHandleA
SetFileTime
GlobalReAlloc
CheckNameLegalDOS8Dot3W
GetProcAddress
FindFirstFileW
SetFileAttributesW
GlobalFree
GetModuleHandleW
lstrlenW
GetModuleFileNameW
IsDBCSLeadByteEx
GetVolumeInformationW
WinExec
SearchPathW
GetCurrentDirectoryW
UnlockFile
ReadFile
GetLastError

setupapi

CM_Get_Child
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

Sections

.text
Size: 143KB - Virtual size: 283KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ