220ec4571068c2485a6d782f3a6ddf7f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

220ec4571068c2485a6d782f3a6ddf7f_JaffaCakes118
Size

764KB
MD5

220ec4571068c2485a6d782f3a6ddf7f
SHA1

795c3fe1683fe370444cd2b78517f4b690a531dc
SHA256

981fd3bcceac14af8d2c6ace47c2303dae26d3814af8663cb0ce355500f17c11
SHA512

e1897f500ba1574989278f380c673b6ba4436ed217f61ea012b6301f9e21ef2d0d1af89f67623a1d749c02c6adfa5ef52caec0dd9a10c05e8866e0e847fd990e
SSDEEP

12288:KN5MT3YnyRoJTX0Z1Jm6bFucQd1UrHGPiYXsd9fngNy19kl5onLIKOF:a5EIyoYCWQcc1UK5X+Al5KLtq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
220ec4571068c2485a6d782f3a6ddf7f_JaffaCakes118

Files

220ec4571068c2485a6d782f3a6ddf7f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

691ab7dc1f392ac80210895545cb17c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount

Sections

ydmqphdk
Size: 224KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pgwzgciy
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lkrujjdd
Size: 520KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

beyimboo
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE