4384f7c75b2a1bbd93b1b18cf84b9a80_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4384f7c75b2a1bbd93b1b18cf84b9a80_JaffaCakes118
Size

722KB
MD5

4384f7c75b2a1bbd93b1b18cf84b9a80
SHA1

e31333160e20ccc6b239439d4e339060c1046782
SHA256

d420fe8fb4f36f22198051ce684486d34b893bda1a647907511b84f04705d014
SHA512

448f3865a28be5a08a7807079a5b098d54235e1108d9b1a9bf937236b6becd783b3cce42941401e84f9917b6915b8949df6225a51ff1775e9b6da1f29a396656
SSDEEP

12288:+aaRrhY8+ttdfix6GzpXafQwbgCXGRQQnbsKR9XDEONdTaxbzk/EK4FRTrVb4TYW:vUMtt3+4YwbgCWalKvXNMpznpRTr94Tf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4384f7c75b2a1bbd93b1b18cf84b9a80_JaffaCakes118

Files

4384f7c75b2a1bbd93b1b18cf84b9a80_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5624dbf5142c088aae5da9911b51171b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW

Sections

Size: 49KB - Virtual size: 488KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 856KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

crfspolx
Size: 657KB - Virtual size: 660KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yuvfahua
Size: 11KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE