f860e87d6b4ef5d9a7692ac4ffb21994_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f860e87d6b4ef5d9a7692ac4ffb21994_JaffaCakes118
Size

1.5MB
MD5

f860e87d6b4ef5d9a7692ac4ffb21994
SHA1

ffaa75d22c70c32411431c6563ef01f5cdf7f15f
SHA256

ba1aea208cb7cff8b728ba58b2442318a1af522a25adc54076cd8d568cc49dd4
SHA512

61294acda5f2b455e7de436dcf00dfe4a2cac944528fcb53962289448409d4375ac856e54740b572ccefeaa8604eacd45b51da7e9436d6c6b9a63a7e2499a7bd
SSDEEP

24576:8ZLdqdCQdgRAnfoRrKKpqC2/qHEYerLyrHsSjqxMCZzNx:8XydI8CYZYeyDsrxx3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f860e87d6b4ef5d9a7692ac4ffb21994_JaffaCakes118

Files

f860e87d6b4ef5d9a7692ac4ffb21994_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 528KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 996KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

chzzkkmr
Size: 936KB - Virtual size: 936KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mjagyfps
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE