cfc9abf572cb9a9ece9136398754c151_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cfc9abf572cb9a9ece9136398754c151_JaffaCakes118
Size

198KB
MD5

cfc9abf572cb9a9ece9136398754c151
SHA1

d003c6a7c81fa91b8c3c1b2a2a8389fc5956abb2
SHA256

46c239603eac3c3e99fa56b9a774b369fca2cb0db3f28acf0ac23d9d9acd1882
SHA512

98af04aa0c97363985113234b374ab1edb6a9ae7f93848f5de459f90a3d94e5f8aa9057c28a7c0c44d0385e9c9df4d8ae706f2248eefd4bfc36a482b9faa6fc0
SSDEEP

6144:w803Jdxw9Bp+Lby55dx3FOnTUEFojflHZwxQ:w803Jdx2Boy5h3FOnTUBjdHr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Regdate.exe

Files

cfc9abf572cb9a9ece9136398754c151_JaffaCakes118
.rar
ICQ-AIM Regdate/regdate.rar
.rar
ReadMe.txt
Regdate.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

0
Size: - Virtual size: 348KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

1
Size: 193KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE