dbe5b02bcc3f7238efa012861d6e6ed9_JaffaCakes118 | Triage

Sharing

General

Target

dbe5b02bcc3f7238efa012861d6e6ed9_JaffaCakes118
Size

1.3MB
MD5

dbe5b02bcc3f7238efa012861d6e6ed9
SHA1

c7882c9e7132539cd1287a32ed75f43f453bf68d
SHA256

a53f12411a706313d31820f4175c7ecd18c226eac90dcb052ee72932e1b6a880
SHA512

5ebc20be6854f471f09daf7cf649f7082328fae0817f52d63dc6c5ddd7cabf6019f76761c235d01942642254fd3c4e1f7a165ebc36c65a30f40b5e123f98ae5f
SSDEEP

24576:4VpuZhaxt/BG6ZptcHm015CvA6BJlEcdLIdYFd:4VpuZUddjted18v5PUCn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbe5b02bcc3f7238efa012861d6e6ed9_JaffaCakes118

Files

dbe5b02bcc3f7238efa012861d6e6ed9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 116KB - Virtual size: 804KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 349KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 1012KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

iyesjjso
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zwvgkgdh
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE