a027cd730a880a7efb5f50a30cc1d05c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a027cd730a880a7efb5f50a30cc1d05c_JaffaCakes118
Size

2.7MB
MD5

a027cd730a880a7efb5f50a30cc1d05c
SHA1

aafca00d2fbacaa62053c33f147087cb8fd0670d
SHA256

e3560865a0e7645a25417203dfb5187ef34fe5b69f94ab72f4176bffee371e49
SHA512

9f063e4358e92fa927e01581e049c8b09d9ffd516bed930670a4ec8b98ea76c2702f90eca5e59962e0d64983a0c825d1579b1d2dd035cf452a0a83a716e98d02
SSDEEP

49152:+3/9kdzZO75faBYn4akOxqqVz+wvu0lMysZCDN93gW1Y9AJTmGC4gYXHCN9:+P9kdz25cc4av5VzhllcCDNBY9ACZIHM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a027cd730a880a7efb5f50a30cc1d05c_JaffaCakes118

Files

a027cd730a880a7efb5f50a30cc1d05c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 316KB - Virtual size: 728KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jqxerzqi
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jrohxeto
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE