8a9d3c500c9fadd97752286dd939d610_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8a9d3c500c9fadd97752286dd939d610_JaffaCakes118
Size

2.5MB
MD5

8a9d3c500c9fadd97752286dd939d610
SHA1

be447caa32d3d1c44205b278450a8896e40e29b1
SHA256

19a5a815466c02f898ae1d884662e60e52fc47384b8798ecaf5b43e5fa889ae3
SHA512

a5f9ed8809ec20989649c099672060bdd67f9d3a022b346e3bec9b53cced182c254c6c1ddb077d9a61c9b1f4362de36c8dab6b9306e8ae0a2d33ca19320542c3
SSDEEP

49152:Y/ttBJoYTjnDaWRtt8GJe5Saa19+Rz5HRcLofkFPcZvwRNXnj7mI9TMPrnpAT5j:Ylt08a0DZzZg5HR4FJ7mdil

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a9d3c500c9fadd97752286dd939d610_JaffaCakes118

Files

8a9d3c500c9fadd97752286dd939d610_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f5fa768a23f27b0dc21ccd22c5bc415b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32 rasapi32

CreateIconFromResource 1�;

Sections

.text
Size: 1.7MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 792KB - Virtual size: 792KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ