3ca055be556cc344443f7939255ad846_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ca055be556cc344443f7939255ad846_JaffaCakes118
Size

3.0MB
MD5

3ca055be556cc344443f7939255ad846
SHA1

c4b149a0c2b5e89f234adfe84666f1cc40465de8
SHA256

ffaa97c115749c0df0e7b6899a0e046e77d05049db7b3bd411c81432ec6a1699
SHA512

b91d05274345e8c88222a3e438e84f7884e2e108dc77d2fec65691389aaea3d03c217863377fc788cf15bfce2a4cf9ab58d6b779a003bf59e6af22a1aeb6d282
SSDEEP

49152:4Vz7phGjjOPztlHoJ6x49aUITT9luOsywO8/R1xAtNfSJ3YVPhxgpsVj77Opy6MO:4VzijKP5lG6x6HItlPaHPSxg6XgyZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ca055be556cc344443f7939255ad846_JaffaCakes118

Files

3ca055be556cc344443f7939255ad846_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 2.3MB - Virtual size: 7.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nfkkfgcr
Size: 588KB - Virtual size: 588KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

eecmjukx
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE