bb791d95d3b98335219a9771b739e706_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bb791d95d3b98335219a9771b739e706_JaffaCakes118
Size

94KB
MD5

bb791d95d3b98335219a9771b739e706
SHA1

dd6960d8a03589d5aeaa407b52c9417a37ebae69
SHA256

f06ace26ccacf738b39d480a0b5242fc49ce1fa21f2ff8935d10db0ce2d21236
SHA512

2a5a0a34c9c1cd3ae92d6b27948d02c2c00e4d80bde054acbf47a2dac67d56a720fd8598804aebf6fbc9332ea1acb6d0689b29913abfaac443032890d539a167
SSDEEP

1536:PL4qIK+blcHufj3skQIRagqxbLo7GQDV/+E9E5WBz7t07yyf4kFRj68Rw:PM9K6Zfj8k/RNqxbiDYUZBz7tDoRbjfw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb791d95d3b98335219a9771b739e706_JaffaCakes118

Files

bb791d95d3b98335219a9771b739e706_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de39dc68941cc6307e3b2590c857a907

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA

user32

wsprintfA

advapi32

RegCloseKey

ole32

OleRun

Sections

.data
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 68KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE