028bd74f0422b8f9fa36d5f1caac86ca_JaffaCakes118 | Triage

Sharing

General

Target

028bd74f0422b8f9fa36d5f1caac86ca_JaffaCakes118
Size

2.7MB
MD5

028bd74f0422b8f9fa36d5f1caac86ca
SHA1

f64f788b31eefb3fc47b6defa0837878e56a7534
SHA256

adcaf697e2e3f8557cc468bb9e4815cc613db1b9945ec0ac263f34f0b8c9e69c
SHA512

7041f69eaa0b4ee3ca0e3ca8424ad34ee24ad4a82e161bc114e33d939c147a53fafc8380114da10063fd5f2328d1de24c2e52dd541d45640e167a8d870c66b2d
SSDEEP

49152:xgS2AoH6P4seNAwdo7SxCpgmh3mmGc3bCBwt60PDtizwvsiyFvUmgw4yk:xgS2Am04ltGgmZmntwo0PDt5vs3Urw4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
028bd74f0422b8f9fa36d5f1caac86ca_JaffaCakes118

Files

028bd74f0422b8f9fa36d5f1caac86ca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5b2d79cfc407e50b830e187a48b0d8b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

WideCharToMultiByte

Sections

Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 509KB - Virtual size: 660KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lgjdbnhq
Size: 2.1MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pxxivdky
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE