eb40316e692b0c8891a197134f589350_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb40316e692b0c8891a197134f589350_JaffaCakes118
Size

117KB
MD5

eb40316e692b0c8891a197134f589350
SHA1

05967339a95d43cc33cecc64645bfa15f2360cec
SHA256

cb2cea507149d6d9830ac18d88cffe97874572033915cfe7a0030e04aa096caf
SHA512

18fa24bbf9ab93e13da837bd44c5a07121d6ef4233c4fa7be5641ac6e601d6c068fa8781670cd924a920ddc695d8f78db97b328965922503cd39dc7f01008c33
SSDEEP

3072:UkPJfkYUpGNRFrXhN2ggcUtdchPRI+5odZQdi+D7wy:J4GN/rRogedcI+SdcD7j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eb40316e692b0c8891a197134f589350_JaffaCakes118

Files

eb40316e692b0c8891a197134f589350_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de39dc68941cc6307e3b2590c857a907

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA

user32

wsprintfA

advapi32

RegCloseKey

ole32

OleRun

Sections

.text
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 68KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE