acd30dbe0164a548baa11c7bc0f8fc03_JaffaCakes118 | Triage

Sharing

General

Target

acd30dbe0164a548baa11c7bc0f8fc03_JaffaCakes118
Size

1.6MB
MD5

acd30dbe0164a548baa11c7bc0f8fc03
SHA1

de888f857b0d893627fb5b8fc2efdc250b804c8d
SHA256

6b28d414e40967e1a7738a9cbc864cfff95f59da0d477b333a78b90502a69058
SHA512

7b2a515c1d777c9dd5a6d1d9e4f2f8120a87c933c243ba763880069ae410a11365e019c7e7d7ccd3be95681eb80ee6ea1f4e8ae6b40711df6b1d2cf96aa4237f
SSDEEP

49152:w/HMJh2aFdmUS3MyS4YpGf7CZV2UW2i+vwXQY:AHUp4eySsG7gXQY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acd30dbe0164a548baa11c7bc0f8fc03_JaffaCakes118

Files

acd30dbe0164a548baa11c7bc0f8fc03_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ca3fe48232d6ba497c58447c18c6e8e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32 msvfw32

_TrackMouseEvent �&

Sections

.text
Size: 784KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 768KB - Virtual size: 768KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ