00182ac3f1cb31a770a6daff9f34fac5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00182ac3f1cb31a770a6daff9f34fac5_JaffaCakes118
Size

112KB
MD5

00182ac3f1cb31a770a6daff9f34fac5
SHA1

ecb7741199514368629450bb241aa26a72e78f3d
SHA256

142ebabb8472ca71535bb043f8e834941d2c3ef6a57d52640b6e9e755a2ae702
SHA512

e09e57efae4aef666d051477687f7d6570946df38b73e281c5c792710c4281163c3c165b25107317a8a5f170b3686f8e5b987442b736640b4d3215ff00c5db2d
SSDEEP

768:GG7Hz0ixirBPJC+S/VX2FWynA3+e9/Gbt0Hczw0FH7OtrMHp2ZsEeH4IvyJ2:UrhJC+Q+WPt9/GaOHyrMHMZs/HtvyJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00182ac3f1cb31a770a6daff9f34fac5_JaffaCakes118

Files

00182ac3f1cb31a770a6daff9f34fac5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

db114927c7723d8631629f0f1e1381df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumValueW
RegCreateKeyA
RegDeleteKeyA
RegLoadKeyA
RegQueryValueW
RegGetKeySecurity
RegCreateKeyA
RegOpenKeyExW
RegCreateKeyExW

kernel32

HeapFree
FindClose
ExitProcess

user32

AppendMenuA
AppendMenuW
GetDlgItem
LoadMenuA
GetWindowTextLengthA
AlignRects
DrawIconEx
EndDialog
GetDC
CreateIcon

Sections

.gjod
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.plip
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kdel
Size: 69KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mbahk
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ