150ef6abbaeb670fda09a04a89f6503b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

150ef6abbaeb670fda09a04a89f6503b_JaffaCakes118
Size

214KB
MD5

150ef6abbaeb670fda09a04a89f6503b
SHA1

c584bbdbb692531c7d57857ce1cc105b6cd2c272
SHA256

ff53ba884b7ed92200eefd6b9b581964c450c046dc4659f7e6df7acdba76638d
SHA512

dfc357e0c11664ad46039316381d1d52e65f7654d7b0d947612dd681d382e4dc3c48c983d0a7d0562d97b90cba94a8ee0f0caa098eead655b76a3aeb2e89a740
SSDEEP

48:1xFtdCVFIHwySLSnP6M6izGjvhfYOMER5nGce4XzPw+mQut+MO0zjhO0qj1t:xgFLSnyzRXRMceEJmP5OShOhL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
150ef6abbaeb670fda09a04a89f6503b_JaffaCakes118

Files

150ef6abbaeb670fda09a04a89f6503b_JaffaCakes118
.exe windows:1 windows x86 arch:x86

4fda163a7bb8d73be455c3665be5a95a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

URLDownloadToFileA

shell32

ShellExecuteA

kernel32

GetCommandLineA
GetModuleFileNameA
GetModuleHandleA
GetSystemDirectoryA
CopyFileA
RtlUnwind
SetCurrentDirectoryA

advapi32

RegCreateKeyExA
RegCloseKey
RegSetValueExA

crtdll

__GetMainArgs
_mkdir
exit
raise
signal
strcat
strchr

Sections

��t
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE