217e3c5f204a81ffff77b88d099aeb91_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

217e3c5f204a81ffff77b88d099aeb91_JaffaCakes118
Size

1.4MB
MD5

217e3c5f204a81ffff77b88d099aeb91
SHA1

1fa5d9a1e8dd3235f767c0035212703611233ccf
SHA256

861616e1b4e7c41ce227520723ed565410e57aefde7d7a76434d2b52aa222641
SHA512

b8c68515917f36a3891cdd2acb4320ca28ae9ea2796469e2a78dc373cc94c20836f00f402cb8c9435269cd8ac9671be2441413c865c7ef5501c04a2b249e32d7
SSDEEP

24576:XPZ9vhixMZKwR/pBKB5afeQbbT15lMrOMjPoKzg4XH3UPyVgEBz6CIuZdQqld7Eo:MwqIVuRj/XEyVgEB7vQeSDO6U9TgyJbD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
217e3c5f204a81ffff77b88d099aeb91_JaffaCakes118

Files

217e3c5f204a81ffff77b88d099aeb91_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

ipzbfnrs
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rfhikids
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

synibyiz
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ugirhgbf
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE