7589c2875c2c53e5bb727969d710536a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7589c2875c2c53e5bb727969d710536a_JaffaCakes118
Size

12KB
MD5

7589c2875c2c53e5bb727969d710536a
SHA1

86bd6d2192cd098adabcf11372a87ea7c8352334
SHA256

858d9f7d21ec99a99af1885b8f78adafc3a6450ffc3d1248793e2dec31f29dd1
SHA512

803fd2a7958217470b2e01f316dea197afb9e3310af82fef4abbc567c638b74b78c37559f81fe8a88da26bf4dc228ea50f7dcda557e03317a2f30de147c4dab6
SSDEEP

192:5adVyVa8nehiN9gzUs4ysHFC1ChI0LA97VvjVvDTTW/Q0Z4iooWC5:5adVOFnehW9gzUs4yaMwq0Lo7VvjVvDc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7589c2875c2c53e5bb727969d710536a_JaffaCakes118

Files

7589c2875c2c53e5bb727969d710536a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fe456c350656238245d66997667b16e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDoubleClickTime

shell32

ShellExecuteA

shlwapi

StrStrA

kernel32

ExitProcess
lstrlenA
lstrcpyA
lstrcatA
GetTickCount
GetModuleHandleA
GetCommandLineA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 414B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE