JaffaCakes118_bffa6c7ebd4fb86eba73b01b96cf8a3c | Triage

Sharing

General

Target

JaffaCakes118_bffa6c7ebd4fb86eba73b01b96cf8a3c
Size

170KB
MD5

bffa6c7ebd4fb86eba73b01b96cf8a3c
SHA1

7ac7f718962660df5542de75128871d420df4aea
SHA256

1381af938213a1e33bb5cd9cb1fa82d2cdd5f14e0a53edcdb7480847277bbd71
SHA512

fb41a3acf84424fbfb04546bf88bde697927f96d26df4344e7ce518f8c7c72e1b2c4d74b84596d6209806ebe006ca2c5af2e00d37260d7994251c0629e85ac9d
SSDEEP

3072:6iGifTBzP8Yxv9OuabnFezAu5INkmzasdh3p6CLYb5eelB+vs4:vNV7tq5ezp2zF33pW5eelB+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_bffa6c7ebd4fb86eba73b01b96cf8a3c

Files

JaffaCakes118_bffa6c7ebd4fb86eba73b01b96cf8a3c
.exe windows:4 windows x86 arch:x86

d1d17f611519b3cc4e33ab1f836c1fe0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

kernel32

HeapAlloc
CreateFileW
GetCalendarInfoW
HeapDestroy
LoadLibraryExW
GetSystemTime
HeapSize
GetThreadLocale
EnumResourceNamesA
HeapFree
SystemTimeToFileTime
HeapReAlloc
FindFirstFileW
WriteFile
GetStdHandle
GetLocaleInfoA
LoadLibraryW
GetProcessHeap
CloseHandle
lstrcpynW

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ