JaffaCakes118_c659bd947a937c9b68717034c48d2c2d | Triage

Sharing

General

Target

JaffaCakes118_c659bd947a937c9b68717034c48d2c2d
Size

168KB
MD5

c659bd947a937c9b68717034c48d2c2d
SHA1

fe84f049a961c9f7cd9d65e09a2bc40b97ab0b16
SHA256

24dda5a1b590c108ca7ee3eeac132705a845abacac716c5c7673a941efd881e5
SHA512

9ba06f70a51561482631c76f33aa3eb5eec7fce47a27d4f247df123f59a5a7f7a9bebe49178fac47a3bfcaff98b5feadf980d7b15702905187300bf305635f07
SSDEEP

3072:UhSzIiBfIqd7oIQo1y3V083XhVlG0vFduuVFIl+kDw6KtTUqIrDAO5hWEW/8yB2a:3Kqek1yF0qX9Fd6lzDwlTUFfp5xX4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_c659bd947a937c9b68717034c48d2c2d

Files

JaffaCakes118_c659bd947a937c9b68717034c48d2c2d
.exe windows:4 windows x86 arch:x86

379c38da6b678bc9354f1893a3eebbfe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetACP
GetLastError
lstrcpyA
WideCharToMultiByte
OutputDebugStringW
lstrlenW
CheckRemoteDebuggerPresent
GetCPInfo
EnumResourceNamesA
lstrcpyW
MultiByteToWideChar
lstrcmpiW
lstrcpyA
DeleteCriticalSection
GetTickCount
GlobalAlloc
LockResource
InitializeCriticalSection
FindClose
GlobalFree
GetModuleHandleW

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

CharNextW
DispatchMessageW
GetDC
wsprintfW
KillTimer
TranslateMessage
PostThreadMessageW
SetTimer
GetMessageW
CharUpperW
SendMessageW
UnregisterClassA

shlwapi

PathCombineW
PathFileExistsW

ole32

CoTaskMemFree
CoRevokeClassObject
CoTaskMemAlloc
CoRegisterClassObject
CoCreateInstance
StringFromGUID2
CoUninitialize
CoTaskMemRealloc
CoInitialize
StringFromCLSID

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ