JaffaCakes118_cd5b9532dd1abffda3e5c0dfe9423570 | Triage

Sharing

General

Target

JaffaCakes118_cd5b9532dd1abffda3e5c0dfe9423570
Size

188KB
MD5

cd5b9532dd1abffda3e5c0dfe9423570
SHA1

0f8256782b93c8bb341428a2aa089127f44e03fe
SHA256

1844fa3d3dff9ae8df2afd52b8decb2f6cc9d436429229c651a08c91f3f698ef
SHA512

cc202208d35c977d23386129953ecf45a902ea3d68d93bf7bbb6e938fc2e3a834c6670a730ab9623becb7c88f35418bc6ad0c2d27cbd247bfe1cb4c6fc64cbc6
SSDEEP

3072:wVxXHgOUsKEnfzulyyhBu2xalzz5buuR00w8eFnXLev7DNSaV6:wVxXHgOAyyXu66bXReFCTA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_cd5b9532dd1abffda3e5c0dfe9423570

Files

JaffaCakes118_cd5b9532dd1abffda3e5c0dfe9423570
.exe windows:4 windows x86 arch:x86

08619944ce2550d79cc352dd66b368ce

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
GetAtomNameA
WideCharToMultiByte
FlushFileBuffers
GetEnvironmentStrings
LCMapStringW
GetCPInfo
LoadLibraryExW
IsBadReadPtr
FreeLibrary
GetDiskFreeSpaceA
LCMapStringA
FindFirstFileA
EnumResourceNamesA
FreeEnvironmentStringsW
GetFullPathNameA
GetEnvironmentStringsW
VirtualProtect
SetStdHandle
SetFilePointer
GetOEMCP
GetThreadLocale
ReadFile
GetStringTypeW
IsBadCodePtr
CreateFileA
FreeEnvironmentStringsA
GetFileAttributesA
SetUnhandledExceptionFilter
WriteFile
MulDiv

rpcrt4

RpcStringFreeA

shlwapi

SHCreateStreamOnFileW
PathIsContentTypeA
PathAppendA
PathIsFileSpecA
SHCreateStreamOnFileEx
PathCreateFromUrlW

Sections

.text
Size: 98KB - Virtual size: 237KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ