d3a55a6d8e5d8fb3e2caa5a058dce69a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d3a55a6d8e5d8fb3e2caa5a058dce69a_JaffaCakes118
Size

267KB
MD5

d3a55a6d8e5d8fb3e2caa5a058dce69a
SHA1

3eaf80e0f462ebd5bbabf34c1bc76c6f75e695f5
SHA256

e3c068f725b8936e03aba92882ea245fc73dc9796574b094afc5a2efd8f221a5
SHA512

9d5c02dea8fb17cc22b09027e9f1b110585e792e2e90ec8ec2f1ffe4714e3742f00077b4f81c67fff68833d4ce4e21d2d0659403b43f81c2b276205669b720d3
SSDEEP

6144:k7z1xlPZ7+JMyPvz3DzIxGUMdg4bTA7kMUUae9Z2CBMgqM1fGREXL:kjlu3r3DzIxddcUpfZZv1f0EXL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3a55a6d8e5d8fb3e2caa5a058dce69a_JaffaCakes118

Files

d3a55a6d8e5d8fb3e2caa5a058dce69a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

31069c1b81cc9950daa601b7158811ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

SetThreadToken
RegSetValueExW

ole32

CoCreateInstance
CoDisconnectObject
CoGetClassObject

Sections

.qbujqh
Size: 34KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fkj
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.utmd
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dwr
Size: 1024B - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE