3c6f063332e1708b294c81fa3adc3269_JaffaCakes118 | Triage

Sharing

General

Target

3c6f063332e1708b294c81fa3adc3269_JaffaCakes118
Size

41KB
MD5

3c6f063332e1708b294c81fa3adc3269
SHA1

888e63e8ee2176da042fb8c5180cfd2800cf5197
SHA256

cc274c212ad65c8974f0e5fdf6027daba1213bf3f0ced21c92145a3c3c8c9c0f
SHA512

ccb9c94ccd9f780b3cf082b7036524420b168627db03e8a74f14bd38496af6a6c8fafe1a729d310b84c41e902f753c7d7180681e45a21b197d316e3858bcf6db
SSDEEP

768:Kf2sUhqoumDnXzCqXGUcq/pkS/cNFMZnFZT9ocfLlI6A3RcbLVT:m9Uh5zDXOqLd/wKFF91xI6A2LVT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c6f063332e1708b294c81fa3adc3269_JaffaCakes118

Files

3c6f063332e1708b294c81fa3adc3269_JaffaCakes118
.exe windows:5 windows x86 arch:x86

31069c1b81cc9950daa601b7158811ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

SetThreadToken
RegSetValueExW

ole32

CoCreateInstance
CoDisconnectObject
CoGetClassObject

Sections

.slsj
Size: 34KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adkdqf
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vgb
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xud
Size: 1024B - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE