JaffaCakes118_e3d70812746f0e6c30916b7c57f4a8bd | Triage

Sharing

General

Target

JaffaCakes118_e3d70812746f0e6c30916b7c57f4a8bd
Size

163KB
MD5

e3d70812746f0e6c30916b7c57f4a8bd
SHA1

dc76f61c8cca52610e2fb27a429c8247f9278ff8
SHA256

6982fcbc72d0faae8f4dcbbf7580cae801127b7b447afa72bd60bd9244d2bac2
SHA512

c3a7934771dfa304f76df4999eb1ff54b23a0d5ebefe8ae32e4a97bee4b1a5bc913d8e143103fc0790673db6e52d293bd816397b5b39cca720f45b3b51721397
SSDEEP

3072:mW2pUxUHaS1DQw26/PDOzz9Yy6oUZRf8jtAAjP96ZcIcOmjQI9o:0SU6A8N6cWTnZRmpj96ZcIcO8QN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_e3d70812746f0e6c30916b7c57f4a8bd

Files

JaffaCakes118_e3d70812746f0e6c30916b7c57f4a8bd
.exe windows:4 windows x86 arch:x86

a650dae4e2f15118ec08da3f881e5964

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

ole32

CoCreateInstance
CoRevokeClassObject
StringFromGUID2
CoRegisterClassObject
CoTaskMemAlloc
CoTaskMemRealloc
CoUninitialize
CoTaskMemFree
CoInitialize
StringFromCLSID

shlwapi

PathCombineW
PathFileExistsW

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

PostThreadMessageW
CharUpperW
KillTimer
DispatchMessageW
GetMessageW
SendMessageA
GetDC
CharNextW
SetTimer
TranslateMessage
wsprintfW
UnregisterClassA

kernel32

lstrcpyA
GetTickCount
lstrlenW
lstrcpyW
WideCharToMultiByte
GetProcessAffinityMask
lstrcpyA
GlobalFree
LockResource
GlobalAlloc
EnumResourceNamesW
FindClose
GetACP
GetLastError
InitializeCriticalSection
GetCPInfo
FreeEnvironmentStringsW
lstrcmpiW
OutputDebugStringW
MultiByteToWideChar
GetModuleHandleW

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ