74414f3261d20b4d8601bca4ef57c1f9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74414f3261d20b4d8601bca4ef57c1f9_JaffaCakes118
Size

17KB
MD5

74414f3261d20b4d8601bca4ef57c1f9
SHA1

6942bc321120d9fc7eb99a488dbe5963d2362d22
SHA256

9b8275ba79f17672fd5450511c6f16b881ce66ccfe89c5d962b83fc22d1c3170
SHA512

409ef698a0b925358455377e2da8f3ce31bbde7dfab1f11a44c145f82a01291e6948805b4f90ce5d0144cccbb198c7c6b7ea4caf6d0e280ed962d54602f2cdde
SSDEEP

384:HNoUAVmlQLHHDOF0H6u4BYbSN8L+O5pRh+BYplaaaaaaaaY0F:uUnY0E28CO5pmm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74414f3261d20b4d8601bca4ef57c1f9_JaffaCakes118

Files

74414f3261d20b4d8601bca4ef57c1f9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

63ee9fa547a86ba45dc5042f3465b31f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

wsprintfA

advapi32

RegCloseKey

Sections

.MPRESS1
Size: 13KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1024B - Virtual size: 906B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE