3a7f71c0c52c6e90cf2d3ad21e78b957_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a7f71c0c52c6e90cf2d3ad21e78b957_JaffaCakes118
Size

38KB
MD5

3a7f71c0c52c6e90cf2d3ad21e78b957
SHA1

85e73c781179832d3e9cee0399de36f0ec38673e
SHA256

4fee6711726bc8d862b94e03b9dc614614a6a144674bda0b8fad605c11c3b849
SHA512

7870d611c29658122a6d4acd94265bbe1095ccdd62e9746fac7ac623fb4964bfbf5565e7c0441a0587c0502d40e90173dec6b8cb7c1c5bf51d97996b7328a33d
SSDEEP

768:TcN48U6tlZnlXiVkckgqRoZHOeC2/z4RTXQ8QTHq4QQhzDxEn10Cks:TCMet1iZqPeC2b4RTXQpbhz2n13Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a7f71c0c52c6e90cf2d3ad21e78b957_JaffaCakes118

Files

3a7f71c0c52c6e90cf2d3ad21e78b957_JaffaCakes118
.exe windows:4 windows x86 arch:x86

15f52aab428a3e4429388533cde5ae74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetCurrentProcess
OpenFileMappingA
VirtualProtectEx
ExitProcess

user32

CharUpperA
CheckMenuItem
EmptyClipboard
DeferWindowPos

Exports

Exports

InitPhogjvrulcy
Tuavfapaxxm
BeginQslndobd

Sections

.itext
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.lqt2l1
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lqt1l1
Size: 30KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ