3d8b023a1fccaef29922ebf0e154c749_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d8b023a1fccaef29922ebf0e154c749_JaffaCakes118
Size

42KB
MD5

3d8b023a1fccaef29922ebf0e154c749
SHA1

8bc6288b1e6aa34148a47decc20b6ea95dee851e
SHA256

0e0e5fad28417673a3f799867945cf8fe0dd2f4911fd299156c189af40a2d870
SHA512

00d9a1db0e47fb30f69fedbd1396546f0c4e92b805c12a8f405f16eaadbbc96fe73a675611a46e68bd55beb3ccf05704ed8ab2e610874a46d211354ad019b9af
SSDEEP

768:tlppXhH5SL33cm92QNFFT/Jn59kS78J5eKCRYbn7XliXRrmlgxBcePo6MihG3sY:tlppRHOn2Qp/Jn59kmy5tjXlg4lgxB1X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d8b023a1fccaef29922ebf0e154c749_JaffaCakes118

Files

3d8b023a1fccaef29922ebf0e154c749_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1286385b579bc499db79191c63f69d22

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHBrowseForFolderW
SHFileOperationW

Sections

.luzyh
Size: 34KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jql
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pmr
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tuf
Size: 1024B - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

FCryptor
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ