43fb37f4f5f1f6cc808fe20282f2117f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

43fb37f4f5f1f6cc808fe20282f2117f_JaffaCakes118
Size

379KB
MD5

43fb37f4f5f1f6cc808fe20282f2117f
SHA1

f0828ebc05768d05d876eaf2eb1d72d24fc04d34
SHA256

59ed1dedb415b493391e722f3b3c1150bd659d49a65d2bd37f411da3a479ec94
SHA512

4d465cef1154bd87f3c9e456e8041740ebb50183deeb10cb80a3251110cecab4e33592b451d4d3d4e642c333e413745e9cda3a04c70feda39ede14c0d3f1a1b8
SSDEEP

6144:qDE6gQKSk+Jlrtl4ABLAN8ZhlmcIcPF0iF5AfeXWRJuWp7vMoq5J7z/:qI6Bk+fR2AAN8nd9sknWtJeJ3/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43fb37f4f5f1f6cc808fe20282f2117f_JaffaCakes118

Files

43fb37f4f5f1f6cc808fe20282f2117f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

18e020beeb1eb9779e27a0067c8121be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetProcAddress
GetModuleHandleA

user32

wsprintfA

advapi32

RegCloseKey

ole32

OleRun

Sections

.text
Size: - Virtual size: 810KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE