842ceb83196c774628f7afdb4a2b8726_JaffaCakes118 | Triage

Sharing

General

Target

842ceb83196c774628f7afdb4a2b8726_JaffaCakes118
Size

47KB
MD5

842ceb83196c774628f7afdb4a2b8726
SHA1

07e232078876be542dd7a7825a29c7978f301343
SHA256

232a52a907b860d0c20f3bd33f096b34ec0e867a053585aa79a356463ac59c75
SHA512

f801300a296eac3ff3e7920da751864866d6c03116fb9e753e4a027540a7f959ec611a6413f1563b85d797f9df1d4be1f09a5c2aacdae3212b8611a258127e50
SSDEEP

768:a1PWaaTmypG+Ts4n6XhpEhQ2docsSoerGTgnNuJHKRKrYLF2:s+aaqmweBdocZoKGaNmHK4YZ2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
842ceb83196c774628f7afdb4a2b8726_JaffaCakes118

Files

842ceb83196c774628f7afdb4a2b8726_JaffaCakes118
.exe windows:4 windows x86 arch:x86

22423eb3058af0ae47f08ce450d03f43

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

CharNextA

advapi32

RegCloseKey

oleaut32

SysFreeString

Sections

.MPRESS1
Size: 11KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE