JaffaCakes118_a8f715e805029fd9960ba55c371e6283 | Triage

Sharing

General

Target

JaffaCakes118_a8f715e805029fd9960ba55c371e6283
Size

165KB
MD5

a8f715e805029fd9960ba55c371e6283
SHA1

bdde5b4efdfa86fc0d203b89a3025917feb5fe31
SHA256

287d4f67c26fa2c2d37949fd3b808c66a42ce76b869c3921f92e97cc7ab5d8fc
SHA512

6d34ec5a5060096ae47948fcc5eae4334e0792bfb1044d622c29ce9127d366e1ca81891d5c4045858e07f8d868172ab2db9c6f757032ce1aedafcc4e2c4c15bb
SSDEEP

3072:etywFfbydLv0hX4L2zHzlhnNbFisqIylmOO0H6U7bXjuh+mXH7LU2RQ6+C/QgJK:etIQo6zHxhntX3OOY6UehdHXqIVJK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_a8f715e805029fd9960ba55c371e6283

Files

JaffaCakes118_a8f715e805029fd9960ba55c371e6283
.exe windows:4 windows x86 arch:x86

4b91abcee440dfc351d62871acf27303

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumResourceLanguagesW
GlobalGetAtomNameW
IsDBCSLeadByte
QueryPerformanceCounter
lstrlenA
FindFirstFileA
SetFilePointer
GetModuleHandleA
EnumResourceTypesA
GetCurrentThreadId
GlobalHandle
FindNextFileA
GetSystemDirectoryW
WriteFile
ReadFile
WideCharToMultiByte
GetCurrentProcessId
FindClose

oleacc

LresultFromObject
CreateStdAccessibleProxyW

newdev

UpdateDriverForPlugAndPlayDevicesW

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ