JaffaCakes118_6eaf07ff6a623c02970dd417a4c3b9dd | Triage

Sharing

General

Target

JaffaCakes118_6eaf07ff6a623c02970dd417a4c3b9dd
Size

276KB
MD5

6eaf07ff6a623c02970dd417a4c3b9dd
SHA1

c748311a462c3de808dfb0bf52771e38b0ff9b0f
SHA256

f347f67a64773e039fbf602f769d6be6e583844ea30c639b59425b1ad34ba643
SHA512

e124dde82e1402a167e5f1beab9fec928333ab077af43dfb196184981e0013063ccd34cb1f35b042001a439abc570b4f801ed110c3c876d02665e9ab28f8d829
SSDEEP

6144:zgASHHsC1CKhoWpsEjRt+f71ojVoksa/I3cJlQi1O3xy4IPSfDCtOa:ensYDo8jRg5eVoks8Ocny3xDUSfDn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6eaf07ff6a623c02970dd417a4c3b9dd

Files

JaffaCakes118_6eaf07ff6a623c02970dd417a4c3b9dd
.exe windows:4 windows x86 arch:x86

87ec1c56af3dd8a39f7990ca0466d4ee

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
AddLocalAlternateComputerNameA
GetModuleHandleA
GetCurrentProcessId
lstrlenA
ReadFile
SetFilePointer
QueryPerformanceCounter
IsDBCSLeadByte
EnumResourceLanguagesW
EnumResourceTypesW
FindNextFileA
GetCurrentThreadId
CreateMailslotA
WriteFile
FindFirstFileA
GlobalHandle
FindClose

oleacc

AccessibleChildren
CreateStdAccessibleProxyW

newdev

UpdateDriverForPlugAndPlayDevicesA

Sections

.text
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ