d02a28730109def550aef09db44a0493_JaffaCakes118 | Triage

Sharing

General

Target

d02a28730109def550aef09db44a0493_JaffaCakes118
Size

2.7MB
MD5

d02a28730109def550aef09db44a0493
SHA1

b40e7d402c2a26a54c36d4ec6c70397ba89e229e
SHA256

b64168f04fa5819d3661d61068bb4629ecc4ea6da57321a1cc61ca47acc9a1ce
SHA512

05bc6009fa7ec5f01459620e6b74fcd1d8828ee5118b7113151cb2ec25cac0c25d4546cf2455648b88c0fe6b825013a147937577705d18f7cd6a83aba12f2d8b
SSDEEP

49152:x8SSmX3nu9IYGvgKP15OxzVDxq9cgT25B7GYJVZN4zGUX0JBa9RQOLnGrPAdhNDa:GSSmX3uzGH/Gxqcgar6SoXueiQoILtQb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d02a28730109def550aef09db44a0493_JaffaCakes118

Files

d02a28730109def550aef09db44a0493_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

eylkbufx
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fielxpzm
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kzpospfj
Size: 644KB - Virtual size: 648KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uctztyoh
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE