3373c58ac51c3fecdbc5cc7f31a22d8e_JaffaCakes118 | Triage

Sharing

General

Target

3373c58ac51c3fecdbc5cc7f31a22d8e_JaffaCakes118
Size

2.2MB
MD5

3373c58ac51c3fecdbc5cc7f31a22d8e
SHA1

b0150b29dc543047ec08d17213ecf4bc72a58e66
SHA256

c98f3ea0c81d72f2ce51cc823514ceefbfe1f4edf3986fe739dfb17896c45658
SHA512

29e35fcabce9ece8405122646c0bb30f68e7b41c6306a0078dc5491ff850929634eb9d7da450450d80f97bc6ce3c3d3904273e0e35688354286f6b17815f6054
SSDEEP

49152:VMlTDmb1j7zfjBhFGwnX92YSmAMPKGVtlQD5sn6dO:VMVUP15X9LlPKGVk1rdO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3373c58ac51c3fecdbc5cc7f31a22d8e_JaffaCakes118

Files

3373c58ac51c3fecdbc5cc7f31a22d8e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

aff84622274411f08484db0ecf4d58ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32 rasapi32

IsWindowVisible C.

Sections

.text
Size: 1.3MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 752KB - Virtual size: 752KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ