fd714d4760bef0dacb54cf3ce0718fdf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd714d4760bef0dacb54cf3ce0718fdf_JaffaCakes118
Size

222KB
MD5

fd714d4760bef0dacb54cf3ce0718fdf
SHA1

54d83500b5091c6047b263e085b9c476093178df
SHA256

ce6df92ec4e802254d796d9a93536315a042ae15c8106bf6266acc6e554e668c
SHA512

6d626951fdeac6b8063d2574c83484d2c0bf81bafe63fec9d28b77bdafd6b765962b764e83b5d7eff096c563d12a94026b392b4553afd3a873ef75a5dc911638
SSDEEP

3072:KcuAeK1AhhsjhjmHfVgIWrRRZDCGG0QLwYWzAkoEEDv6rTKyxbksSgeP9ShZs1Ng:K9bOjmHfVgPuWN823TOEe0YDJjS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd714d4760bef0dacb54cf3ce0718fdf_JaffaCakes118

Files

fd714d4760bef0dacb54cf3ce0718fdf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

36619208f4d49cf487769eae50d1a920

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

DestroyWindow

advapi32

RegQueryValueExA

comctl32

ImageList_Destroy

Sections

Size: - Virtual size: 528KB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE