1097575da106002c98ad7e5a95104148_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1097575da106002c98ad7e5a95104148_JaffaCakes118
Size

757KB
MD5

1097575da106002c98ad7e5a95104148
SHA1

aa081d045306cc7aa2321fe30b9229f8d031bc63
SHA256

78290f6f6de30f5508b8f19bf9d73227517129eca8221305d933cb3f96c4faa8
SHA512

e2ef5390f81b7b0c7e32002fda642a56a418e141c30daa2a4487d59e0b28fdc7c8142ccf613c18b81f34657e821001c3d0f91bc2df9285965675e377ee89bb11
SSDEEP

12288:8VY5t3ka1GRCiR+8y0Ji08HH+2GZha5gXBRiA6P6w4lpjhMGot2zhN8USfz5q:bka1KVyM58HenE5gxUAy6w4At2zP8USs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1097575da106002c98ad7e5a95104148_JaffaCakes118

Files

1097575da106002c98ad7e5a95104148_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 13KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ospjamax
Size: 681KB - Virtual size: 684KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

epwkattw
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE