efe23fb9f7b67360e0b29d14b2d66bcc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

efe23fb9f7b67360e0b29d14b2d66bcc_JaffaCakes118
Size

428KB
MD5

efe23fb9f7b67360e0b29d14b2d66bcc
SHA1

5bc2df71fde37510e739edff289775e0c903b448
SHA256

3b70100c358f7dfe1641ff6e3c1106322f9c0e04eadb56762ea7968af4c47f9e
SHA512

39936877fbb0ce5342cf3f258fd80aa5b1ecd0b068c15dfc457bb9d4b656c2d462e9e982c185e4b0a4eb240d773ef22a06a28cb504de04d04d18ddc33ab8f650
SSDEEP

6144:ur26i6j0wj605NegrEwmHAFjLvQSYnJOVXS7tIZjZHsvATxiOD39sX2dW4l2iLQ1:urd10w3udML1QtIlmCP3w3aGyXUwNJG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
efe23fb9f7b67360e0b29d14b2d66bcc_JaffaCakes118

Files

efe23fb9f7b67360e0b29d14b2d66bcc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de39dc68941cc6307e3b2590c857a907

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA

user32

wsprintfA

advapi32

RegCloseKey

ole32

OleRun

Sections

.text
Size: 340KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 68KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE