JaffaCakes118_00c58b602603b7469c27d35bdfba2a56 | Triage

Sharing

General

Target

JaffaCakes118_00c58b602603b7469c27d35bdfba2a56
Size

276KB
MD5

00c58b602603b7469c27d35bdfba2a56
SHA1

2ad6873ce069613bf75d182baa5b4af1b5b94755
SHA256

fccda9ebd2b3b446b713a5754b7d5a70e47f361c0ac457d7529fadd83dfac910
SHA512

848b1ae747e6887cce8b7ec92a3aa58fb8bceb8debac2192897cc901b952dd85d03869b298574979601103d8a9ac7ab1c0910a8b5f6eba1ba229a29b0342be2b
SSDEEP

6144:qmYKhFqpD1EcbFFBJBU+iWrq/67IXn9Dhs2pzTJRP7Bi4Gpd:qRQUDfFFm+i2q/67Y9DuYzTJRP7U/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_00c58b602603b7469c27d35bdfba2a56

Files

JaffaCakes118_00c58b602603b7469c27d35bdfba2a56
.exe windows:4 windows x86 arch:x86

0948db6dbe61cddeff1c9caf51523e9b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetAtomNameA
GetTempPathA
SystemTimeToTzSpecificLocalTime
Sleep
GetEnvironmentVariableA
OpenEventA
VirtualFree
SetFilePointer
LocalFree
SystemTimeToFileTime
GetSystemTime
WriteFile
GetCurrentProcess
EnumResourceTypesW
GetProcAddress
CompareFileTime
CreateThread
HeapFree
GetSystemDirectoryW
LoadLibraryA
GetSystemInfo
HeapAlloc
ResetEvent
GetTickCount
GetCurrentProcessId
SetEvent
CreatePipe

newdev

UpdateDriverForPlugAndPlayDevicesW

oleacc

LresultFromObject
CreateStdAccessibleObject
CreateStdAccessibleProxyW

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ