c1138c7aa5266cf77632d949ff9fe4e9_JaffaCakes118 | Triage

Sharing

General

Target

c1138c7aa5266cf77632d949ff9fe4e9_JaffaCakes118
Size

840KB
MD5

c1138c7aa5266cf77632d949ff9fe4e9
SHA1

ed42093c7f693668d8c038f6e154f8d1330baed9
SHA256

52f4b72738ec28a2bdeb3a947d6cbea54411c2233c272bfec4fa302a692ce4c4
SHA512

1d7d1bf49e264085941d123d9fd8920afde09b186befc1afe8b8c561648a91117aeaf7a49f06006816452262c6d3975a385fef4403320247eb932b1e4f03bd32
SSDEEP

12288:GjEmWx+JmFRgzabhfDaBirRBqB5puDv2yQwTAqJpL65QVHenAX+881fBlVRspnUO:GjER+6sIKQrqd+HQ3qJp3+nA6zlshn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1138c7aa5266cf77632d949ff9fe4e9_JaffaCakes118

Files

c1138c7aa5266cf77632d949ff9fe4e9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

655f65ea91f1ec9556f48f5837cae81e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter

Sections

uvjepmuq
Size: 251KB - Virtual size: 584KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

abotdqhn
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mgrvskbk
Size: 560KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xlauplrx
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE