c8f53fa4a905349071efd8cceaa7b034_JaffaCakes118 | Triage

Sharing

General

Target

c8f53fa4a905349071efd8cceaa7b034_JaffaCakes118
Size

1000KB
MD5

c8f53fa4a905349071efd8cceaa7b034
SHA1

5b2a374d23893781a63a47c189961fd288d124e5
SHA256

985f341786de06d7a922a61ea592b1870c0c2408c2a037bde38f964f29f56355
SHA512

794e5851bc8e36fd77b2bbacc56c3f02ebb2eae3c712198b6217112ff19d506a6f5db109bd98e0e62d994d37dad968f6e92b709e73daa604b31215a9aff4f70e
SSDEEP

24576:wZhXXk22Le7JTCAS+Mmrt6MG28BBUV3osNCIQSYkeJZtNPuJKnDWHBL:Sk226x/B6w8oV3os4IQ5kebDsL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8f53fa4a905349071efd8cceaa7b034_JaffaCakes118

Files

c8f53fa4a905349071efd8cceaa7b034_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 140KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nyiodrlv
Size: 824KB - Virtual size: 828KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tqixrznm
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE