83a29d9e05d3d64ffcc8b17bccd8c421_JaffaCakes118 | Triage

Sharing

General

Target

83a29d9e05d3d64ffcc8b17bccd8c421_JaffaCakes118
Size

124KB
MD5

83a29d9e05d3d64ffcc8b17bccd8c421
SHA1

64ed9dd4a7f81953d2cd8e5d9785e3cfaebbf0eb
SHA256

7f4e33b0252c2be6125ca19608fec15306cc95de8e8f7ffb2dc3a0ee1772fd02
SHA512

544df06ebf4b299839356b23bf4851a2d0dd6cfe1dc3dcaf8f937392705d3c0a4fa3f1336597974eb42fb6832029437fc8dcce61e4fc0a398737b05c969bef3d
SSDEEP

3072:0p5q6SVbz9u5ocViHh+zr9Q81GCC2ETu:0p5q6MbzrHhB81GaET

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83a29d9e05d3d64ffcc8b17bccd8c421_JaffaCakes118

Files

83a29d9e05d3d64ffcc8b17bccd8c421_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de39dc68941cc6307e3b2590c857a907

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA

user32

wsprintfA

advapi32

RegCloseKey

ole32

OleRun

Sections

.text
Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 68KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE