a07a65dffb05e6a9ec1754e2a2524ae1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a07a65dffb05e6a9ec1754e2a2524ae1_JaffaCakes118
Size

1.2MB
MD5

a07a65dffb05e6a9ec1754e2a2524ae1
SHA1

baf641f731dbf1f9d53bf27d40fb7b66f0886dbc
SHA256

2f763e3635a841ba5b22af444aaaad113f56dd1200ed77df3189f942e3cd3638
SHA512

b1273b4c9e2890a50b25e042b5fa4c59579b4cc062a3f33bd67c41fdc9c9cea93010270eb18ac67036cd61f21ff86409e0d50dd40f9c8be246be2058ad48c7dc
SSDEEP

24576:O0ZsqtKkBimSXHtrXNjz8gE3treRl02MTcMI7IFNgX0Cyr:7FimqP8rtreb0HcjXty

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a07a65dffb05e6a9ec1754e2a2524ae1_JaffaCakes118

Files

a07a65dffb05e6a9ec1754e2a2524ae1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 64KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 392KB - Virtual size: 974KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 984KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

aqoufzzl
Size: 792KB - Virtual size: 792KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kposuksi
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE