JaffaCakes118_4fa5203958314656a26d1626a2c613bc | Triage

Sharing

General

Target

JaffaCakes118_4fa5203958314656a26d1626a2c613bc
Size

180KB
MD5

4fa5203958314656a26d1626a2c613bc
SHA1

3a634b9ff4f19eac98cd39e0e6d4c1695fba5336
SHA256

a2f7ee5299a2486d20c1624d23deb7ca1aad59225bdf7f22f5d96e61da72bd43
SHA512

44521de2fabba707725bbe4e50ca26ee2999b65d0ed2fa0b292646345b0a5f5f24c4c3a06f33bea0c7b5551b2c2cfee6eaba7206b893e21bd94c75364db398c3
SSDEEP

3072:/puRDgiR7PBt/kUhFo9/HluGY0PWI62Gj9jcrCxB8G+lyk4UTbsji9Ks+W57pP:/KRPn/kUw1HUGzXQj9QmxB8blyr0bsjq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_4fa5203958314656a26d1626a2c613bc

Files

JaffaCakes118_4fa5203958314656a26d1626a2c613bc
.exe windows:4 windows x86 arch:x86

90957398c2bdeb357830ef0689ab36ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
BaseInitAppcompatCacheSupport
GetProcessHeap
ExitProcess
VirtualAlloc
GetSystemInfo
VirtualQuery
VirtualProtect
EnumResourceTypesW
HeapValidate
RaiseException
HeapAlloc
SetUnhandledExceptionFilter
FindFirstFileW
IsBadReadPtr
QueryPerformanceCounter
HeapFree

gdi32

GetStockObject

oleacc

AccessibleChildren
CreateStdAccessibleProxyW

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ