344ef259f0c15d859a79bc99f436ac2d_JaffaCakes118 | Triage

Sharing

General

Target

344ef259f0c15d859a79bc99f436ac2d_JaffaCakes118
Size

185KB
MD5

344ef259f0c15d859a79bc99f436ac2d
SHA1

4c3cb7e4db82d4dfe63a2eeadbf92677d665fb5a
SHA256

cf85dfe39c677294c0ff61159c16c46a8bcf462d13c58da7ed9b9b1b445bee8c
SHA512

70ba7269aa63db3c3a8025e168e7150c7ecc051a6e49df63703e16d04df32c989c39e8428e58e173669d427be62294778a6b98facf0b54db5883e8d69a7b3131
SSDEEP

3072:VneDqw6sX5I6S0JHrsYg+jE9cH/x4Yn0DFRjEwlqAwo61:2qVSO6S0RoYgMmcZ4BsoVli

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
344ef259f0c15d859a79bc99f436ac2d_JaffaCakes118

Files

344ef259f0c15d859a79bc99f436ac2d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e8f37f5bd00ea061a0658695fdacbf5d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyA
RegDeleteValueA
RegQueryInfoKeyW
RegEnumValueA

kernel32

ExitProcess
OpenFileMappingA

user32

CreateIcon
DrawTextW
CloseWindow
GetWindowTextA
AlignRects

Sections

.545ce
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.g752a
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.85198
Size: 117KB - Virtual size: 472KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbg9c
Size: 1024B - Virtual size: 916B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.agfed
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE