dc8d55f10920d9000ab477ec9d6f5346_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc8d55f10920d9000ab477ec9d6f5346_JaffaCakes118
Size

11KB
MD5

dc8d55f10920d9000ab477ec9d6f5346
SHA1

373b4d841208f1d2e7295913501e3edf24a641b0
SHA256

9ac472fe22b163d1cb8c2e4aa8505ecab93688251c57a6c8ef9e6581ae7da983
SHA512

52db2efb33d0803e6437a476cfc53578f17987cb52ce515441c68541a9fedbd3c37167687b33c965bac723a0322affc42e6a925a6c40be3f8703e8f316774bf5
SSDEEP

192:6fMaikaSiSfzDG3yR0/NBvCgMKrXZNBymzVEdzG5kJ087W65K:si1Sl8yotQosD7W6E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc8d55f10920d9000ab477ec9d6f5346_JaffaCakes118

Files

dc8d55f10920d9000ab477ec9d6f5346_JaffaCakes118
.exe windows:4 windows x86 arch:x86

99ea5f9ebec534e148bf7c225cc36f01

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDoubleClickTime

shell32

ShellExecuteA

shlwapi

StrStrA

kernel32

ExitProcess
lstrlenA
lstrcpyA
lstrcatA
GetVersion
GetModuleHandleA
GetCommandLineA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE