JaffaCakes118_34de90285528c8dca7e396aefce5f1fd | Triage

Sharing

General

Target

JaffaCakes118_34de90285528c8dca7e396aefce5f1fd
Size

272KB
MD5

34de90285528c8dca7e396aefce5f1fd
SHA1

d1dc359466abc72456297d2bf4268bbc645c614c
SHA256

86cc937b106151d3423408a6535e2ace76119448e7349759b0691fd383773824
SHA512

b698dcafde878b21ed4b4147d6549a863d152b7b7cb3799f7996ca4636e9c6f552240530b0bfb963fbbd0c63ea1179cb8a56fa109b505c614c070b70783f9ede
SSDEEP

6144:OumQZQrUz39zuqhbtzt+4Ev2gkD1WqlGzm0bC2ca0y7r:UJAzNqqh5zt+4Ev2gK13Ol1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_34de90285528c8dca7e396aefce5f1fd

Files

JaffaCakes118_34de90285528c8dca7e396aefce5f1fd
.exe windows:4 windows x86 arch:x86

9166e76b818ba9cf9fbd2bcc99df0484

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameA
IsValidCodePage
GetTimeFormatA
GetLocaleInfoA
GetCPInfo
VirtualAlloc
HeapSize
GetDateFormatA
MultiByteToWideChar
GetOEMCP
EnumResourceTypesA
RtlUnwind
TlsGetValue
SetStdHandle
WriteConsoleA
TlsSetValue
TlsAlloc
IsSystemResumeAutomatic
SetFilePointer
GetACP
GetConsoleOutputCP
HeapReAlloc
RaiseException

shell32

SHDefExtractIconA
SHGetFileInfoA
ShellExecuteExA
SHGetPathFromIDListA
DragAcceptFiles
SHBrowseForFolderA
Shell_NotifyIconA

version

GetFileVersionInfoA

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 137KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ