JaffaCakes118_87fb8136431cdd5eb3893584acc30e6d | Triage

Sharing

General

Target

JaffaCakes118_87fb8136431cdd5eb3893584acc30e6d
Size

167KB
MD5

87fb8136431cdd5eb3893584acc30e6d
SHA1

b72c3d11bd58d245a4532d2644abd7369b4abe75
SHA256

696402889b6b3e16e8d89e2b446a506c06d11d9c60ad3548ec6329475eec1dec
SHA512

20ba019b527ddfc54da315f842e8c9fac2c63d3927d572f852b12600312125919e208175c6024a58337b1b89104a025b3246758825543991aa94da47d7c796ca
SSDEEP

3072:5C2W94EaIwgHPFaE+pWouiUEu9lLSxScXXV0AvLn9X5gHazbhefydIce:V3EF+pWqUtlmjXxDn9pWebAfsH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_87fb8136431cdd5eb3893584acc30e6d

Files

JaffaCakes118_87fb8136431cdd5eb3893584acc30e6d
.exe windows:4 windows x86 arch:x86

760c29abcda6e8b74a3371ac3d5784b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetErrorMode
LoadResource
GetNextVDMCommand
SystemTimeToFileTime
GetStringTypeW
FileTimeToSystemTime
SetThreadPriority
FindClose
FindFirstFileW
FindResourceW
CompareStringA
SetCurrentDirectoryW
EnumResourceNamesW
SetEnvironmentVariableW
FileTimeToLocalFileTime
GetShortPathNameW
FreeLibrary
RegisterWaitForSingleObject
LocalFileTimeToFileTime
GetLocalTime
FindNextFileW
SearchPathW

user32

GetCapture
InvalidateRgn
SetCapture
ValidateRgn
RealGetWindowClassA
ExcludeUpdateRgn
ReleaseCapture
ValidateRect
GetUpdateRgn

Sections

.text
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 1024B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ