621b29b6f3c89a0c5c3425b05c1426fe_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

621b29b6f3c89a0c5c3425b05c1426fe_JaffaCakes118
Size

52KB
MD5

621b29b6f3c89a0c5c3425b05c1426fe
SHA1

c573345df5e2cab50e733e403d089fbc3a0159d8
SHA256

6c9e429c4bfb11b268651e55b984dc84554c3b9b71d5fb984181829e01d81190
SHA512

ae0343d6a52a2fd458d62cb969ee6f39d5eb356eb052096673d745f8eef5e9b77d88979a025a25e76a7d4f53dc986ab34904add58d2a40edb6207dc4c816b288
SSDEEP

768:s9EZim1pcirq0bZ8kXSzSJMen164dv8Y53mj8dXA6kYVI2tPrk8TWCtkNor5ee:sUimHBJN9Oe11t8ImLoprz3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
621b29b6f3c89a0c5c3425b05c1426fe_JaffaCakes118

Files

621b29b6f3c89a0c5c3425b05c1426fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3b6e3b0f276cd8981b021d6bbced6749

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess
GetSystemTimeAsFileTime
CloseHandle
GetStartupInfoA
GetModuleHandleA

advapi32

RegQueryValueA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 36KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ