72778e5fb110edaf3daa0bd1e9120319_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

72778e5fb110edaf3daa0bd1e9120319_JaffaCakes118
Size

919KB
MD5

72778e5fb110edaf3daa0bd1e9120319
SHA1

30c7f6927c2fe28d3eb37f60e99789f783d2f8b1
SHA256

99ee08760ff0b1fb724696833205e0fd6dac5967bfe416912428c99db2c768cc
SHA512

1293c8208a2184bfaca287bac55db79d981d41d3a7ea2354c3bdb5afb609948947ae4de18807c86a2c84f7389c55ad5f7c8cdb08f065cf2f9eccc8d261a4b7d1
SSDEEP

24576:K026j7HFjSYF6MYPJsK771fxYn88PiVNdqGREE:K02g7ljrGbvyiVLq1E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72778e5fb110edaf3daa0bd1e9120319_JaffaCakes118

Files

72778e5fb110edaf3daa0bd1e9120319_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 20KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 680KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

coffhhrj
Size: 520KB - Virtual size: 520KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dedvdzzm
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE