74151a1e7b1a85821d88f29658efc08c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74151a1e7b1a85821d88f29658efc08c_JaffaCakes118
Size

76KB
MD5

74151a1e7b1a85821d88f29658efc08c
SHA1

df61395ef9d1b1cd802c0c55069d060ef7742154
SHA256

7cac82030d57037a88d6edb67a7d4b19f66afd99882ac415cdcb6ad3bef91a09
SHA512

c63a9ab963e7e922a6e754863e72143ab02159deb0583b1b6915fb6d47765c66eb928cf25a519f624d09bd976e8f9445ff0d8dbd6e53255b8c0d7748690e6785
SSDEEP

1536:4xulKQNoQekaLZ2AKcHXoja0Fb0s3qEyytHXZ1MoSC1JGTFAz:4aKEoQNaVwcHI2IyYzHaFk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74151a1e7b1a85821d88f29658efc08c_JaffaCakes118

Files

74151a1e7b1a85821d88f29658efc08c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e375fae1e56661edcfb77b789bbf9540

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetCurrentProcess
LoadLibraryExA
VirtualProtectEx
ExitProcess

user32

CharUpperA
CheckMenuItem
EmptyClipboard
DeferWindowPos

Exports

Exports

Legomfegg
Ufwoycgc
SetFowgqpty
EndFtkfionc

Sections

.itext
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.lqt2l1
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lqt1l1
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ