86a0f876b460a39667d1240be3b3af6d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

86a0f876b460a39667d1240be3b3af6d_JaffaCakes118
Size

928KB
MD5

86a0f876b460a39667d1240be3b3af6d
SHA1

0496573a538af46d9268ba16869a6170a1759832
SHA256

688889431005003770b8411506b6ff55494d32c7ffcef0db54a5d87a02e6e277
SHA512

ea523ceb7302d455ac21364666a010b4f8f35fcbde233dc3c6cbd2a22fd62a053cc78fd6d1382ea6029d8d4eba992390f2a2b4f96dbc431c9d26948306be4bb9
SSDEEP

12288:vQfDRSKUqz2fItbZiFJHyWWAOhs8ydUUCv/Am+j+AnErVTYYzUkWIVcnYGo3X:4fWqCIYSegs8QYv/APjEpNWbnc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86a0f876b460a39667d1240be3b3af6d_JaffaCakes118

Files

86a0f876b460a39667d1240be3b3af6d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 140KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 960KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xdbbzcwc
Size: 760KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ojdsuilz
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE