404a2b4e2ef315962794670e1859d2fb_JaffaCakes118 | Triage

Sharing

General

Target

404a2b4e2ef315962794670e1859d2fb_JaffaCakes118
Size

1.8MB
MD5

404a2b4e2ef315962794670e1859d2fb
SHA1

1a952815541b8fd0f87cbd8a162f09bacee240d2
SHA256

ffdeed24785aa39ca9d3fd4e1c63a47747bd37f32cad251ae280d7dbe477701e
SHA512

d3fedb6d72dafbfc44d492773de170c748ff1f105e31cc546f60a928269e05793747d20063e2bb84b81a7380093cdd21b03a547d6aca295034739ff4e8172d19
SSDEEP

24576:yaLZbwmwrhsdz3DfOX+rw4LGmWkctEOcrVbJJyPwtoh+wKU+KoFtFKA67Rr:yGzwtiDfOX+rtGjkDyoop+KoFg7Rr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
404a2b4e2ef315962794670e1859d2fb_JaffaCakes118

Files

404a2b4e2ef315962794670e1859d2fb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1024B - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cohvkaba
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

crzofuxv
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE