JaffaCakes118_8b98031d68d8ed28f7dd32ac5b648a4e | Triage

Resubmissions

08/04/2025, 16:02

250408-tgznaswwcx 10

29/03/2025, 17:03

250329-vknkwayvav 10

Sharing

General

Target

JaffaCakes118_8b98031d68d8ed28f7dd32ac5b648a4e
Size

315KB
MD5

8b98031d68d8ed28f7dd32ac5b648a4e
SHA1

5b95ac17daaba2e0627657a186032c88de05e2e4
SHA256

17c0cd538a1ab2296e626d49cc25076a8647ad3c8550f8a25e3ad69de17558b8
SHA512

04107d23a3c02d420cbbfc280896f199c2ea3cc50ca88f678dbaaf2bf85bce33f668b0956e7adf7b75303dbfe678325b6ec1dde356e8395fe4ff5919b09ef55b
SSDEEP

6144:t/BOPNymMiR6k47ySQON/fiHmK3tGQpD3lipW0KdL:sy7u6kIf/6HmK3tzgpox

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_8b98031d68d8ed28f7dd32ac5b648a4e

Files

JaffaCakes118_8b98031d68d8ed28f7dd32ac5b648a4e
.exe windows:4 windows x86 arch:x86

2364bc4ac76e8b95a9893d05af6ac5c1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
HeapReAlloc
DebugBreak
IsValidCodePage
GetStringTypeW
WriteConsoleW
OutputDebugStringA
EnumSystemLanguageGroupsW
GetStringTypeA
LCMapStringW
OutputDebugStringW
GetTimeZoneInformation
CompareFileTime
GetLocaleInfoA
LCMapStringA
GetCPInfo

ole32

ReleaseStgMedium
FreePropVariantArray
CreateClassMoniker
CoUninitialize
CoGetObject
CoInitialize
CoCreateInstance
GetRunningObjectTable
CoTaskMemAlloc
StringFromGUID2
CoTaskMemFree

oledlg

OleUIBusyW

oleacc

DllGetClassObject
CreateStdAccessibleObject

shell32

SHChangeNotify
SHGetPathFromIDListW

winmm

sndPlaySoundA

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ