3fbccb5a2ae935fa05bdc2b8a8d166a8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fbccb5a2ae935fa05bdc2b8a8d166a8_JaffaCakes118
Size

4KB
MD5

3fbccb5a2ae935fa05bdc2b8a8d166a8
SHA1

1ef83d9a9c17738fa7fee83156fd5fe0efcdca9d
SHA256

8e3102e4ca1ede5df28b80ae6d468a4bd21e4c84c06dc089602a0bded304bda9
SHA512

ee6a8448419befd56368c459f8f313c91b278aebd709ae1a5560bf92a3104644153d92df66a0f1d144ce66245959c3bbd88dffb8dd94000a520416e15c99c665
SSDEEP

96:xa9qNkJJN8JRCK911ofBTExJeATMG71D1TlMGZpk:xa9qi6sq11ofBT2XTn71hlMG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fbccb5a2ae935fa05bdc2b8a8d166a8_JaffaCakes118

Files

3fbccb5a2ae935fa05bdc2b8a8d166a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2c4ecdc5f98502d5ab84f6f4a4dff543

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetFileSize
CreateFileA
SetFilePointer
HeapAlloc
GetProcessHeap
WriteFile
DeleteFileA
GetSystemDirectoryA
ReadFile
HeapFree
GetModuleFileNameA
ExitProcess
GetWindowsDirectoryA

advapi32

RegCloseKey
RegSetValueExA
RegOpenKeyExA
RegCreateKeyA

shell32

SHGetSpecialFolderPathA

shlwapi

PathAppendA

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE