ffabb4e877f4bdc5eb33eee53e82b2d8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ffabb4e877f4bdc5eb33eee53e82b2d8_JaffaCakes118
Size

7.8MB
MD5

ffabb4e877f4bdc5eb33eee53e82b2d8
SHA1

60312edcaa84ef5c4fe311d6fb17969d33477b9e
SHA256

20ac3931c50d6d17fbbeb772f7fdea4c36ba2286da2df918e9bcc5fba4377800
SHA512

d4b33a1762d7fa4f162fc8319c1b8fd72a7e9b114a7d024d640197eda45bd490b6c576b3cd021eb6264c4f807465973fa0e6a0526e21de40fea75080147fce8d
SSDEEP

196608:YclrGty6oOpfJUsUXS8zTyOidaNZDGTzGk7Eub:RYy1ef63XS8zuJdwRsGg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffabb4e877f4bdc5eb33eee53e82b2d8_JaffaCakes118

Files

ffabb4e877f4bdc5eb33eee53e82b2d8_JaffaCakes118
.exe windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 324KB - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.3MB - Virtual size: 8.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mwlrkdyo
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ryrazusg
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE