0dbd1ef1c83aed99ce082a149b84631c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0dbd1ef1c83aed99ce082a149b84631c_JaffaCakes118
Size

982KB
MD5

0dbd1ef1c83aed99ce082a149b84631c
SHA1

2aaff060433b56e94c4e704bd7698ff0f3b109a6
SHA256

e85b9ff5ce06778dc50921a2c15a2ae6d9992303bb2dfed67583569478025630
SHA512

1681f8cd6eee5b3dadfe098df5a332bb7356d5d995b41bb5d8e374c3798af032605fd150ab0ec2ee6d6490f6885fb7f18938f6a19809636c7af8f18add6fc983
SSDEEP

24576:M4vN5sTuiEA4dDRbSuIgAkGk5lxOjfnPxwAl0s:MH8pvlxeHxwAl0s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dbd1ef1c83aed99ce082a149b84631c_JaffaCakes118

Files

0dbd1ef1c83aed99ce082a149b84631c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

aiqbqwwy
Size: 973KB - Virtual size: 973KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bswexsnq
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE