JaffaCakes118_97fdbdc07ceb9e10206420289b12eb4f | Triage

Sharing

General

Target

JaffaCakes118_97fdbdc07ceb9e10206420289b12eb4f
Size

180KB
MD5

97fdbdc07ceb9e10206420289b12eb4f
SHA1

9c45cda70e2627bfdf86f63bc116d09fe282fb98
SHA256

59f8a062ddbe72f169e5f50ba362cd713f24efef91370e3d1b702497011e7911
SHA512

56d7c04983814769222d0c1152c3b002fc262546b7ae2372b97e30045c424008d18ac0cdd1babe07e903796488a542dfe4f245b2111f672d2629b6010f70b975
SSDEEP

3072:Bq9uNvM3aBiI7Jq1jMpEiypVNA5rqaOoqHW5dDA3hj6wdfMOT3MMJSFVWwmW7agG:8INvM3aMss18EiyPNonqHKA3b5T3cFVt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_97fdbdc07ceb9e10206420289b12eb4f

Files

JaffaCakes118_97fdbdc07ceb9e10206420289b12eb4f
.exe windows:4 windows x86 arch:x86

4ee427dcdec580f9d666955cb2785ca3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleSave
CoTaskMemAlloc
StringFromGUID2
CoCreateInstance
CoTaskMemFree
CoTaskMemRealloc

wininet

InternetOpenUrlA
InternetReadFile
InternetOpenA
InternetCloseHandle

gdiplus

GdipCloneImage

winmm

timeGetTime
timeSetEvent

kernel32

SetFirmwareEnvironmentVariableW
LocalFree
LCMapStringA
LCMapStringW
GetSystemInfo
LeaveCriticalSection
GetProcAddress
DeleteCriticalSection
GetLastError
InitializeCriticalSection
EnumResourceTypesA
LocalAlloc
GetShortPathNameA
SetStdHandle
GetModuleHandleA
LoadLibraryA
EnterCriticalSection
GetStringTypeA

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ