e9ccaca6e60dd07d7fb52e2b54afa216_JaffaCakes118 | Triage

Sharing

General

Target

e9ccaca6e60dd07d7fb52e2b54afa216_JaffaCakes118
Size

2.4MB
MD5

e9ccaca6e60dd07d7fb52e2b54afa216
SHA1

d7b94ba3f1dc82cde7ab1a4008746619c9094ab3
SHA256

8bacf042f29475bc011bc711f43777249fb6641e965ee079242a8a402f5d5295
SHA512

fca8a2535e2f5afe942f8640e5ceead4735e9428c79fdec78cee87b726497b7e364d2ee9d31c5e008f24c0fd1c439db7aa6f673456a0a8f94ab954c5c255974d
SSDEEP

49152:iPZIEZdNGMuAO2ISZs9U3WY205n1xKGg7Vcbew+Cm/oCwdx8TgL:LEVCWs9UGY5xNg7+sQZx0C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e9ccaca6e60dd07d7fb52e2b54afa216_JaffaCakes118

Files

e9ccaca6e60dd07d7fb52e2b54afa216_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

hmqyxkat
Size: 28KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pgqdagjx
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

omnekymm
Size: 2.3MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dgrtgpop
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE