JaffaCakes118_6e09063e5556b84dc59ca54a46f9131a | Triage

Sharing

General

Target

JaffaCakes118_6e09063e5556b84dc59ca54a46f9131a
Size

97KB
MD5

6e09063e5556b84dc59ca54a46f9131a
SHA1

c8ab8e715a56ddc6cc25f0f372817d8ae0795515
SHA256

68614603024d92484c0706ae2bd11214d552ecfc4c97fcce615dca94d6d78e5f
SHA512

8190c24a5991131d692ad06c5b191f6ffdceea227da45321c929ebfc320b4a1e5a637edc99262f3c96fd9df7c0f7350c77599640863dd0b102e60102ce602465
SSDEEP

3072:s5sWAKkXDAX2Yb+B1xIul02NlBUFFk8jwaaHw7Koj4rg:sWWA9XNJB1xIuTbUZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6e09063e5556b84dc59ca54a46f9131a

Files

JaffaCakes118_6e09063e5556b84dc59ca54a46f9131a
.exe windows:65535 windows x86 arch:x86

bb7bdc49069a19b13e3d44735c8f74e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CreateFileA
VirtualProtect
GlobalAlloc
VirtualAlloc
GetTimeFormatA

advapi32

RegQueryInfoKeyA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA
RegFlushKey
RegQueryValueExA
RegConnectRegistryA

Sections

.text
Size: 60KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE