78e893292aeb7baf50bff5cc0fc66a7d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

78e893292aeb7baf50bff5cc0fc66a7d_JaffaCakes118
Size

788KB
MD5

78e893292aeb7baf50bff5cc0fc66a7d
SHA1

c39766181519337d923a73412c90909542bde233
SHA256

7bdd139c78f41940a3c5a78498c9981b38dce6b11f251b1d85c0fdd18785e105
SHA512

d79cf84dff126c36f23442034558e96b48c688a66699dd36322cd06dec23e07a1200b83ee2deb5bfc3efa022074889d86af826a0121090b6c6d49feb8c9f0ed1
SSDEEP

12288:hu3MUMr9kTBs4WiotO15kyV/hnQrJqQ5ETaq6y2N9Z8RifM5LMDOyygPbJ94qu:g3MP5kTKioYnZQljq6yE9eUf0/y7NOp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78e893292aeb7baf50bff5cc0fc66a7d_JaffaCakes118

Files

78e893292aeb7baf50bff5cc0fc66a7d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

sobksgiq
Size: 88KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

plocfwho
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hfllpunc
Size: 632KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qahvrcfp
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE