JaffaCakes118_7f4d4475a7cc4a9e562a0c6c33f7ac8c | Triage

Sharing

General

Target

JaffaCakes118_7f4d4475a7cc4a9e562a0c6c33f7ac8c
Size

176KB
MD5

7f4d4475a7cc4a9e562a0c6c33f7ac8c
SHA1

5224ea303c6de133a34be6dee5bd5aa6288eced6
SHA256

243a01f617cc53f24fab0f790f682f04a610e0480599cb843f43dea7283a2d57
SHA512

1f4ebd1bd564248aec1357033813d0fca20ba7a2411a6ee4387bd148e72be43ad8069185dfcdd83bf56c6c72c684c4acd8778b150c8f767888204db03453b2ef
SSDEEP

3072:Fli4OZS4d94oBQY33xQqniEpIo9yBYg2LXZmyoGR/yoMEa:3iT9PJOqniEpIIyGg2LXgPGRqfj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_7f4d4475a7cc4a9e562a0c6c33f7ac8c

Files

JaffaCakes118_7f4d4475a7cc4a9e562a0c6c33f7ac8c
.exe windows:4 windows x86 arch:x86

6fdc7ebc8ebc1c9fc6212c01a5c25747

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

kernel32

FindResourceA
CreateFileW
LeaveCriticalSection
GetCalendarInfoA
lstrcpynW
SystemTimeToFileTime
LoadLibraryExW
HeapAlloc
GetStdHandle
CloseHandle
FindResourceExA
LoadLibraryW
EnumResourceNamesA
GetProcessHeap
FindFirstFileW
WriteFile
GetVersionExA
LockResource
LoadResource
SizeofResource
GetSystemTime
GetModuleHandleA
HeapFree
HeapDestroy
TerminateProcess

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ