b88f0c00849c4f0d677cfe4e16b3b806_JaffaCakes118 | Triage

Sharing

General

Target

b88f0c00849c4f0d677cfe4e16b3b806_JaffaCakes118
Size

3.1MB
MD5

b88f0c00849c4f0d677cfe4e16b3b806
SHA1

6264b68d52a134ee1c84ac45de6ab80afe2d8683
SHA256

47f6d1a214220e446312ac367d858a02564f8ad2df8481b2ff9c2c46cec8ec14
SHA512

1e7f3f3ec4d7d9d5dbb5c78d2477be036876e41b6ea2a116ddb557257439867e59a1c04200eabecfe7d1ca16be90b3a365d72d5c736ccd6c5a1f4204fa608bff
SSDEEP

49152:T5wARtN7xY6SvefegmrS71JH5DLwvhY5FA4BxNIAuLd4zefBjD:T5wARjOyfegmriZPwvhT4B3ed4SZjD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b88f0c00849c4f0d677cfe4e16b3b806_JaffaCakes118

Files

b88f0c00849c4f0d677cfe4e16b3b806_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 700KB - Virtual size: 700KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dlwsxzle
Size: 924KB - Virtual size: 928KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

htvakrjn
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE