JaffaCakes118_0653710eb5c9598536d7ac27870134aa | Triage

Sharing

General

Target

JaffaCakes118_0653710eb5c9598536d7ac27870134aa
Size

163KB
MD5

0653710eb5c9598536d7ac27870134aa
SHA1

ef656480135941338072e365b5c0d762463bcd07
SHA256

e25a524edbb1023b5cfeb5d2c8d83ff7e9fbb8e0a5f95d9d2456048d0ec0e8ab
SHA512

2e58cff65da20bf26ad72f6014821c4ad769eb9e857f8c757eb597564bce98bcb4c561baec98d24893126b5465cac3dfec490833aa45600b1b34a4fe0b230784
SSDEEP

3072:mW2pUxUHaS1DQw26/PDOzz9Yy6oUZRf8jtAAjP96ZcIcOmjQI9o:0SU6A8N6cWTnZRmpj96ZcIcO8QN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_0653710eb5c9598536d7ac27870134aa

Files

JaffaCakes118_0653710eb5c9598536d7ac27870134aa
.exe windows:4 windows x86 arch:x86

a650dae4e2f15118ec08da3f881e5964

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

ole32

CoCreateInstance
CoRevokeClassObject
StringFromGUID2
CoRegisterClassObject
CoTaskMemAlloc
CoTaskMemRealloc
CoUninitialize
CoTaskMemFree
CoInitialize
StringFromCLSID

shlwapi

PathCombineW
PathFileExistsW

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

PostThreadMessageW
CharUpperW
KillTimer
DispatchMessageW
GetMessageW
SendMessageA
GetDC
CharNextW
SetTimer
TranslateMessage
wsprintfW
UnregisterClassA

kernel32

lstrcpyA
GetTickCount
lstrlenW
lstrcpyW
WideCharToMultiByte
GetProcessAffinityMask
lstrcpyA
GlobalFree
LockResource
GlobalAlloc
EnumResourceNamesW
FindClose
GetACP
GetLastError
InitializeCriticalSection
GetCPInfo
FreeEnvironmentStringsW
lstrcmpiW
OutputDebugStringW
MultiByteToWideChar
GetModuleHandleW

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ