JaffaCakes118_95b66567078d995df8933d6da80f8922 | Triage

Sharing

General

Target

JaffaCakes118_95b66567078d995df8933d6da80f8922
Size

180KB
MD5

95b66567078d995df8933d6da80f8922
SHA1

7a72d5f968c98cbf3e8fe757531a95441bd02482
SHA256

bc64ee6197fcd3fadbb2e8fb0577a74f529c8b74b104e2b96e0c30af87bf66e4
SHA512

53ea4d49caef21843e3ec6a92266820e2f3a76f733866da05c698871d684f8f5e1c217c7f8d63318512d7b51b76593671046e2c0cc16a2379c599d1d538ed991
SSDEEP

3072:T7ZfScoulv/rJhyJ7g+E2kvZkvuBt3y4ACA3kQmORgOykCC:T7ZfScZv/GRZXA3bG3k8sk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_95b66567078d995df8933d6da80f8922

Files

JaffaCakes118_95b66567078d995df8933d6da80f8922
.exe windows:4 windows x86 arch:x86

028fa8dfbb5c0dd681798de0f36dcbdc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

GetCalendarInfoW
GetThreadLocale
LoadLibraryW
GetLocaleInfoA
LoadLibraryExW
HeapFree
HeapSize
GetProcessHeap
HeapDestroy
SystemTimeToFileTime
EnumResourceNamesA
FindFirstFileW
CreateFileW
WriteFile
GetSystemTime
CloseHandle
HeapAlloc
GetStdHandle
HeapReAlloc
lstrcpynW

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ