ddc1da4136109e4c0003a0b2fe625bc7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddc1da4136109e4c0003a0b2fe625bc7_JaffaCakes118
Size

7.1MB
MD5

ddc1da4136109e4c0003a0b2fe625bc7
SHA1

e038dc54d797c394781ff9822b5402c2c6d3cd03
SHA256

2fd2a2b401d3c61475f9fd923d85f9dfa31d0f06ff3956d67c03ca7dff6c1ee9
SHA512

2dcd79b2e5440e02298e7f683a9b827a4b0a477d82d5ed2ff485e270eece4dae59cdf70f8b797599f91556b3a8e288fcd05cda40237eec4057630575a85f37c5
SSDEEP

196608:ZxKYfROfIOUoIZLHt0gteZ0Bm6M2Yz/vSLXj8m:npRCIOUoI06ctfiLXAm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddc1da4136109e4c0003a0b2fe625bc7_JaffaCakes118

Files

ddc1da4136109e4c0003a0b2fe625bc7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 5.2MB - Virtual size: 10.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tmuqwmwb
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yjczamdo
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE