88bd3e510f320ce20d9951b74b2041a4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

88bd3e510f320ce20d9951b74b2041a4_JaffaCakes118
Size

163KB
MD5

88bd3e510f320ce20d9951b74b2041a4
SHA1

abf5672402a937f6930671f06a628462e4063020
SHA256

e87df2b17844996ef22a0727da4b73074b808a4ae671b42981f13541f9b7f7a1
SHA512

451ac3829a20946186551016571f3dddffcd5b67e941578e98e8ace0e016d52d2b2cd5a7260c6ca2f0fbc42ecfd11aa4ac1cd2d2944d0bae0a9c161e15471cc4
SSDEEP

3072:FBFFxEU5VznKQdKReLb6DEkTe41gNAGtlPH7FypyPsQGywBVZp6QfmfMoKjz:FBFFxEU5VLKuTl42NAGt9H7FygsQGKQl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88bd3e510f320ce20d9951b74b2041a4_JaffaCakes118

Files

88bd3e510f320ce20d9951b74b2041a4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

044d4425e08c18e6d5c886b46ac7e985

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DriveType
FreeIconList
OpenAs_RunDLL
SHFindFiles
SHFree
SHUnlockShared
PathResolve

kernel32

ExitProcess
CreateThread
FatalExit
CreateThread
FatalExit

user32

GetClassWord
DestroyCursor
GetMenuState
CharToOemW
CreateIconIndirect
FindWindowW
GetUpdateRgn

Sections

.text
Size: 62KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE