fd3791c46657c0136faa17921d740c4c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd3791c46657c0136faa17921d740c4c_JaffaCakes118
Size

112KB
MD5

fd3791c46657c0136faa17921d740c4c
SHA1

63b07f2dffa848c5eaddd3066e1c85da1253e33f
SHA256

fb201443bd623f09ba9de69e6e1f40447de45dc1a203b6d2345ba3550878e09d
SHA512

f938211afc557a9fe78701b890770673419fe4b6c0e6b963343f8a9e88bdb1900e54a84fce46c1eff03ac46336331f58d434e5c9443a812f9e7027930f4ec05f
SSDEEP

3072:WxTQ5NzBDurpykw/OQKux5wZYLv1MmSvRD68wb:WTUlDu1t4vCJD68w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd3791c46657c0136faa17921d740c4c_JaffaCakes118

Files

fd3791c46657c0136faa17921d740c4c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1f7c8b0d4cb1f6aab7f792d41709aec4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DllGetVersion
ImageList_GetIcon
ImageList_Destroy
CreateStatusWindow
ImageList_GetIconSize
CreateUpDownControl
MenuHelp
ImageList_DrawEx
ImageList_Draw

advapi32

RegQueryValueA
RegEnumKeyW
RegDeleteValueA
RegQueryValueExW
RegSetValueA
RegEnumKeyExA
RegQueryValueW
RegDeleteValueW

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 25KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ