94a4ed0144be2c68cced53e58c6ffe01_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

94a4ed0144be2c68cced53e58c6ffe01_JaffaCakes118
Size

2.9MB
MD5

94a4ed0144be2c68cced53e58c6ffe01
SHA1

78b2a431c96b1588ffe4125bc832cbb46c8e1243
SHA256

ef6c477bb35b86ad8a59340ea38776437515d3ce30c43cc2c225d0df04937ef4
SHA512

5dfd843fc3e7b3acf9a0e7a0902a143d931cc04155821646b9529febe17332595ca991f9f50cdad90e31015a460dce05bf33803b5361c782279f13e35f5983d7
SSDEEP

49152:8kvIrCzz3ctHZ0fgnovlxrDnr1HMx7Z8fxmGya8rFVaKG9f/ApJBo3Ov:XvImI70onyTT5HMZ8fYj9VaKG9+JBoI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
94a4ed0144be2c68cced53e58c6ffe01_JaffaCakes118

Files

94a4ed0144be2c68cced53e58c6ffe01_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

w^)UX:0K
Size: 621KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

?qBp6eCV
Size: 922KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Di 6q*3d
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Yk"U4X(G
Size: 512B - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cGZJNlYo
Size: 1014KB - Virtual size: 1016KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

!Vb&2"Be
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE