fa752ac01f8c23fd45faee83ec4e8ba8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa752ac01f8c23fd45faee83ec4e8ba8_JaffaCakes118
Size

173KB
MD5

fa752ac01f8c23fd45faee83ec4e8ba8
SHA1

d93d0ddf4ac524b3416a4c3204ce14b17534d56a
SHA256

8de2088998a982774ae8ac2beef8b5ef2c0723f85e7521c375b219e3983ceb94
SHA512

f34821b40206de4715b93ae67e51ae780f2659b290d493191e0d41d34bdd27927f54824ee9788e37174781d422adc68efa18884fded8541309d4cb528c4af004
SSDEEP

3072:gNfFRToc4Pum08mKRNrvkcFe6l9LnzJjQ50qalxdHYJIIqUG/Oa:gTSR2KnHeWnFM50tlFkyOa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa752ac01f8c23fd45faee83ec4e8ba8_JaffaCakes118

Files

fa752ac01f8c23fd45faee83ec4e8ba8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

25e1c60f3362d65ca63e0479e0d1ad98

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

CreateMenu

advapi32

RegFlushKey

comctl32

ImageList_Create

Sections

Size: - Virtual size: 49.6MB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 102KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE