21be45e6842636b3232c48a4bc4c303e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21be45e6842636b3232c48a4bc4c303e_JaffaCakes118
Size

2.6MB
MD5

21be45e6842636b3232c48a4bc4c303e
SHA1

0f09a5ea15efc4124af933496c42d318d234e5b8
SHA256

f380708ca5fe61b48eeea0d69953d40b416abc6d0a46b8ec46aa97634db29791
SHA512

f567b62e08ebf456d9b41c1dac842b16ff0a09fef0de72a0445ae106471d887df2c982911d5f26b60a2a4f35d7e533d54159dd1e2621bf447302f7fef69949b8
SSDEEP

49152:of53oMY9p1EAnLsqlvZ1uRRJo0ocbhZZugDG5wKwIwVsqlvZ1uRRJo0ocbhZZugI:of53VYPO2LsqlvZ1i00ocbhZZugDG5wt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21be45e6842636b3232c48a4bc4c303e_JaffaCakes118

Files

21be45e6842636b3232c48a4bc4c303e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 844KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ptzugxdk
Size: 676KB - Virtual size: 676KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nwquhmzf
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE