JaffaCakes118_4ea7c83f425b958d086c6e149b974a0e | Triage

Sharing

General

Target

JaffaCakes118_4ea7c83f425b958d086c6e149b974a0e
Size

181KB
MD5

4ea7c83f425b958d086c6e149b974a0e
SHA1

6d4c206279b81d345958cef89abfaefd8bb51093
SHA256

4d9069ca45891daa6d531429ad3bef9e8f8ced4736531096cd6ef8ea1d236981
SHA512

5f6c4d9ec9f04d747f77be6012ef093b9eed5c83f26867ef504640420da03509698a34d25ef86f1804d80c3dd5acac772ffec10caf36effee7e93ea397a06a6c
SSDEEP

3072:UrSqBxddn2ypl4dYt7ieXGGXmGnWA1FCDsh8hvU6clb5OGg4p/UQ7S5x/b2Qhl0:zidd22lTieXpWGnWA1Dh8+5b8Gg4941D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_4ea7c83f425b958d086c6e149b974a0e

Files

JaffaCakes118_4ea7c83f425b958d086c6e149b974a0e
.exe windows:4 windows x86 arch:x86

b2404c30063c85014f97eb40bf9e1cd3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
BaseInitAppcompatCacheSupport
MultiByteToWideChar
SetUnhandledExceptionFilter
IsDebuggerPresent
GlobalUnlock
GlobalFree
LoadLibraryExW
FreeLibrary
EnumResourceTypesW
FormatMessageA
MulDiv
CreateMailslotA
GetSystemDirectoryW
GetTickCount
GetLastError
GetCurrentThread
LoadLibraryA
lstrlenA
UnhandledExceptionFilter

oleacc

AccessibleChildren
CreateStdAccessibleProxyA

gdi32

GetStockObject

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ