b8d8dc11eb815aded9fa5b2943bffe46_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8d8dc11eb815aded9fa5b2943bffe46_JaffaCakes118
Size

1.6MB
MD5

b8d8dc11eb815aded9fa5b2943bffe46
SHA1

a32bf6b4b0931e0157f770b302410ecb958b2aab
SHA256

3609b218dd5afa17a72b9838051b2d659d7d8e47c39608d434e05d1d0651a926
SHA512

cc140a53691d91585ff981ea63e944836ddfbcff7f95951f7a796038fe9c59143441034dc8db5eae92068c5cfabb4a78dc82cc97fb37d283b1864a1380aa0dd6
SSDEEP

24576:9ItArBYlWJ2MfqmA99pnNOTXN8WAaj35/7iMtkU94PPbwgs57RZK0U6aSaQe833C:9IufMMSbNqmDaj5zoHbwgulA0UBEWEl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8d8dc11eb815aded9fa5b2943bffe46_JaffaCakes118

Files

b8d8dc11eb815aded9fa5b2943bffe46_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

oqtszssn
Size: 268KB - Virtual size: 916KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

aasoqgfk
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qokpggfb
Size: 1.3MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pnpysbri
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE