305002d2f4a574ef710ac2f889981e5d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

305002d2f4a574ef710ac2f889981e5d_JaffaCakes118
Size

768KB
MD5

305002d2f4a574ef710ac2f889981e5d
SHA1

19ada9a1ee2657450a839e9aea83f7b65a663dc7
SHA256

08a920964ac6f2308b629f6c5593bc93ad55390d2b38d9716180cd47f30724bb
SHA512

70f67abc20bb4389ded2d7394bcdc087de70600bd642b1261559dcc59e59c738708e1552a22a252c514faf8a5b3fa6921a3f4f8fb4858f669b2e1c954d922c7c
SSDEEP

12288:ApE6Gdzrr03New6z7N7tSi0lHVGzO5XMr+X42w7coHHhCfBqKLVQiL+M1ttfUG+k:WtGdINCG36ra4/HJ0QHsttP+MaTk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
305002d2f4a574ef710ac2f889981e5d_JaffaCakes118

Files

305002d2f4a574ef710ac2f889981e5d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

96aeca653fdda9a3fc3c0f6a3c928fed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock

Sections

ogzooxcf
Size: 220KB - Virtual size: 492KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nweiaepw
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kpdghmzh
Size: 528KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ezuafakw
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE