JaffaCakes118_da2a7591c2ab63824ba7b2a6b10b2ec6 | Triage

Sharing

General

Target

JaffaCakes118_da2a7591c2ab63824ba7b2a6b10b2ec6
Size

172KB
MD5

da2a7591c2ab63824ba7b2a6b10b2ec6
SHA1

c48548dea489b58a36ab4c5407c0e8ae7db83712
SHA256

62455f10de471dca4af8030087be6d907cbd9ab18df10220b8d6e8c9d704f9ab
SHA512

19f00ce748e70c4488b831e0890fce6b73feedd471a7ac12cddd2f14841fea39f8c5c33d4654082a95f30f6d2539621040dbb8a3fc59da42e7bdd791925de622
SSDEEP

3072:rLk1jLqYrQ++HpaLFybousu1MqR8/0z6Q3YEojgFkf3Rb201GRSK:kFRwOyb913y/0pYEojgKPN0RSK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_da2a7591c2ab63824ba7b2a6b10b2ec6

Files

JaffaCakes118_da2a7591c2ab63824ba7b2a6b10b2ec6
.exe windows:4 windows x86 arch:x86

1b8bb1ffafc9821b9adc13140d878d7e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
CloseHandle
HeapFree
GetCalendarInfoW
SizeofResource
SystemTimeToFileTime
FindResourceExA
GetSystemTime
lstrcpynW
CreateFileW
HeapAlloc
LoadResource
EnumResourceNamesA
LockResource
FindFirstFileW
GetVersionExA
GetStdHandle
FindResourceA
LoadLibraryW
LeaveCriticalSection
LoadLibraryExW
GetModuleHandleA
HeapDestroy
WriteFile
TerminateProcess

oleacc

LresultFromObject
CreateStdAccessibleObject

shlwapi

PathFileExistsA
PathFileExistsW
StrStrIW

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ