JaffaCakes118_f878dfd7853f7d8f18aff9c7c1a1bddc | Triage

Sharing

General

Target

JaffaCakes118_f878dfd7853f7d8f18aff9c7c1a1bddc
Size

275KB
MD5

f878dfd7853f7d8f18aff9c7c1a1bddc
SHA1

7cbb353b503a25cd7a93b886af0bc5f1c542005c
SHA256

28c5fb4c4db907c2d1e1d2b84df3b6120674274a867c69759333c0b5572ca01a
SHA512

25f39b8fa321ff5bb763ea23fae45380a75cfe80540c7d1886e7522b19c3de2f3d030e18b4fdb7bdfbfad0853c295f1d834ac210ce67c1f40522c8c652e09652
SSDEEP

6144:wmui0L90a+zm5ITP8XBx404ve7ursBOCnitzJ9Plds72YR3XohqOiV0WA//a:ki0LKbm5w6B0v7rKVMzJJMLRnohqOiV5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_f878dfd7853f7d8f18aff9c7c1a1bddc

Files

JaffaCakes118_f878dfd7853f7d8f18aff9c7c1a1bddc
.exe windows:4 windows x86 arch:x86

429cedc41eb9c5d0e3a798a588897b7a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
RtlUnwind
HeapAlloc
GetACP
LCMapStringW
LoadLibraryA
GetCPInfo
GetStringTypeA
EnumResourceTypesA
VirtualAlloc
GetStringTypeW
LCMapStringA
SetUnhandledExceptionFilter
FindFirstFileExW
IsDebuggerPresent
InterlockedExchange
GetCurrentProcess
WriteFile
GetLocaleInfoA

msimg32

TransparentBlt

oleacc

GetOleaccVersionInfo
AccessibleObjectFromEvent

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ