4518abebab67ac80382e9f9e090d90c6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4518abebab67ac80382e9f9e090d90c6_JaffaCakes118
Size

1.9MB
MD5

4518abebab67ac80382e9f9e090d90c6
SHA1

12a33494ccb992e08100260b5edf4290a0cb4298
SHA256

463da3bfaa1dbbc4b71856309e96839400c64732531815a9a1cd3ee7d4b5f293
SHA512

563139ae6da0068136673d18a2482e8701bb9b8fc1099a1109fdd3e1957877cf4bd88c6e2f160a27ad953f1421a80e355def9148cb4213fa71520b88e2112d5b
SSDEEP

49152:+teQJF/nbBiLxiJmg3MITPeUD55f39ac3Ypl3k:OeQrN2y8ItD5Jw+YpNk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4518abebab67ac80382e9f9e090d90c6_JaffaCakes118

Files

4518abebab67ac80382e9f9e090d90c6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de39dc68941cc6307e3b2590c857a907

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA

user32

wsprintfA

advapi32

RegCloseKey

ole32

OleRun

Sections

.text
Size: 1.1MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 56KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 16KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 75KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE