a2f61d8dbdab73f007bbde7435a47b48_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2f61d8dbdab73f007bbde7435a47b48_JaffaCakes118
Size

173KB
MD5

a2f61d8dbdab73f007bbde7435a47b48
SHA1

771e689a6b7a27e18c878ffb841d78c9917a85ec
SHA256

c92953ebdd93d61884b74c854fecea615280f4e76b27ab26ea43e947146335c8
SHA512

4e11004e088d18a9ac67ae1bae92d4dc1dc03f42090dea90a8744b9c92c35e19d7697ea5a5af20ce2decca8309cc50d10b9ffb7aeb4ea0d293bb4b37210a6906
SSDEEP

3072:BIuOUUdA/738qFd2oH7KQiaAlMj//cWw3ApE2J759zFsPys/YmYopDFR:BZOUUG/7336HxMjcOE2h2BD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2f61d8dbdab73f007bbde7435a47b48_JaffaCakes118

Files

a2f61d8dbdab73f007bbde7435a47b48_JaffaCakes118
.exe windows:5 windows x86 arch:x86

db7aef33d9c1f6de8949d0d6470ec5e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA

kernel32

GetModuleHandleExA
LoadLibraryA
lstrlenA
GetTickCount

shlwapi

PathCompactPathExW

msvcrt

strlen

Exports

Exports

?PointNextTask@@YGHUtagPOINT@@_KPAUHINSTANCE__@@EPAX#O

Sections

.text
Size: 23KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.split
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE