d3d30decb5ef92cd1cafeb454ecda543_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d3d30decb5ef92cd1cafeb454ecda543_JaffaCakes118
Size

2.1MB
MD5

d3d30decb5ef92cd1cafeb454ecda543
SHA1

017ef6d334e914be8270af99dc61e16515a2a831
SHA256

04a74fce43d3c21e9be157c1794dc35ffac660e6254dffc658bc5c50d945a867
SHA512

4944770252d5ff8a9e579e64fdb7dbdbe5f8ba7a95eede801f32e4591218dfb95ecfba4d4683aed5f43a6ccb2ac2aa939aa73e417754cfa9173532af905cbcd7
SSDEEP

49152:jSA1JRwy/WpZIOnmmrWE1wvIbhkePZDf0uOY/8dDHV:jb0pZ2EuQFkePZIJYOV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3d30decb5ef92cd1cafeb454ecda543_JaffaCakes118

Files

d3d30decb5ef92cd1cafeb454ecda543_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a5e17d6829543938476f9bedf3945d08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetFileAttributesA

Sections

ydbfexhr
Size: 69KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gviehmga
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

iyskrdgg
Size: 2.0MB - Virtual size: 4.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rjwwxftr
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE