04b660dd7d39fa9cc3e95e1dd2656c03_JaffaCakes118 | Triage

Sharing

General

Target

04b660dd7d39fa9cc3e95e1dd2656c03_JaffaCakes118
Size

2.8MB
MD5

04b660dd7d39fa9cc3e95e1dd2656c03
SHA1

c3f73d9a1327c40282ad9f7827c39f7d132d9925
SHA256

c8c1efbb81508f5f6aa047cef3bf470e9f547bc0dfec2d4fb4a4fccd0ab481ec
SHA512

7a4e60b8467a3d0fe3a90ac9a073d08d50f196e8c9e0e658da376edd879f75763dba77aaecf5dfbc056fefa0f8ef56c4fff3c8a4d0eefea79b7b0e2c11d72879
SSDEEP

49152:0TcsW/bL2aJY6gyuJZ010dTkz2CqEr36KmZa8kawTuTPmMTzfqCx:0gt/JY6gJZaqTkzd6KNzTuyMHh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04b660dd7d39fa9cc3e95e1dd2656c03_JaffaCakes118

Files

04b660dd7d39fa9cc3e95e1dd2656c03_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

24ea[Oqj
Size: 592KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8d=t34^a
Size: 944KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ON! J[N/
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

i!GnTy/3
Size: 512B - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

A%LSptOu
Size: 929KB - Virtual size: 932KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Z\aJoe5#
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE