cf5637f911c70c41426ae58a1e352ef6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cf5637f911c70c41426ae58a1e352ef6_JaffaCakes118
Size

3.0MB
MD5

cf5637f911c70c41426ae58a1e352ef6
SHA1

18a71faabeea4c8956595219b222356a5e4fad65
SHA256

f78a4569a90655f3cd3fbff92624bd25f83b7a7251b4abedea79cb11d3d8f13a
SHA512

e61c5b76833f2b70626735902d7797873bcc3124261f6df9bd849e64a4b9363284c040f41047aeab76440d5cc3a37323f7e1465fe9a3172e84f599dc7faae75a
SSDEEP

49152:imkhTlwiE3rPsxKCYdyq6eU+V600N9jRJZUx2V6eBkqD+YyHajwy:vkhOPCYt1Z600DjCcV6eBk68ac

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf5637f911c70c41426ae58a1e352ef6_JaffaCakes118

Files

cf5637f911c70c41426ae58a1e352ef6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 1.4MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bcvvqtfd
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

knpjawfc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE