bd8a3f803caa2ac6d57661c7ed24309b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd8a3f803caa2ac6d57661c7ed24309b_JaffaCakes118
Size

760KB
MD5

bd8a3f803caa2ac6d57661c7ed24309b
SHA1

5fce54e750f3a5ecbf5404b465c2fc76e61c380f
SHA256

3f6b1d193e23636214b825a6a7cbdb633ef3a0ebce101b6ab691b9d5961e1843
SHA512

614ce5b94b0f2f9eb38a314c0e87b6590f62410291fb52503d351820c560589d6a91c920a3e2b89c400d0ee5b5a74896988aa693d0d481d30eda22d248f69569
SSDEEP

12288:nKJgSocVYlYhNcmaKSTFrbtB42UavELpErKKwxTOxJRuomTkpt/MnP65oVp:nKGSoc6lKumytBbUvLyFSl+ptkPeoVp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd8a3f803caa2ac6d57661c7ed24309b_JaffaCakes118

Files

bd8a3f803caa2ac6d57661c7ed24309b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 24KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 852KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tfbymsum
Size: 708KB - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wpjvnwdv
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE