072c53a7d233d149a5040a9b03c34604_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

072c53a7d233d149a5040a9b03c34604_JaffaCakes118
Size

2.6MB
MD5

072c53a7d233d149a5040a9b03c34604
SHA1

f95ce8f78a89fb33d04da41f526baea91f3f1c61
SHA256

bbd9c830aabe9493325b1bd024a080834f73985f0e2336cf93b7da7cfe867600
SHA512

8d8ec3067f03fb40f8f8aeee50c6c0c56f114534c5f9339451e434bccf0ee950dbcaf84879e3a5f7aa6ab811d7665a6fcf9b3c470b723b0b68ebafc7036a7ba0
SSDEEP

49152:Rs8VeJZVBUy7B8NB9mNeUrVJi2og1rYi0qWqBzQpMY6gzZ+gi4NIlQ3dimizF5sR:RLVIZVB9VUB9+Ji2oHi03qNQp3BirlQl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
072c53a7d233d149a5040a9b03c34604_JaffaCakes118

Files

072c53a7d233d149a5040a9b03c34604_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b5c0892fa36495b498d09f7c10228f02

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetStdHandle

Sections

Size: 314KB - Virtual size: 716KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lvzhwtew
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qgcqkyzt
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE