184a0446bc299933040deb772b4139b7_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

184a0446bc299933040deb772b4139b7_JaffaCakes118
Size

2.9MB
MD5

184a0446bc299933040deb772b4139b7
SHA1

2fd1db3b5146b96ae77d64abe8fb17d5886d68c9
SHA256

0e7cb544ac22ab99b88c97a544ccc4b2e5ed1af276ec55b814a5f18c6bd69bcb
SHA512

a38741660411f8d7463725984e978159ff5dd1901bda8b876e9699bd1037f673bcd360901e60fc6dc3d47ca79b3b25d6b4347b443e4fee1e8e1dffa473c3da42
SSDEEP

49152:qmZNuoplw5f4tsSGMVtKpW/htXB1CmgnnUaSOuxhv0vk/1vdL:qYxXuf4OS9rKyBMfSOuIvk59

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
184a0446bc299933040deb772b4139b7_JaffaCakes118

Files

184a0446bc299933040deb772b4139b7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 802KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xdxtassa
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

odzbzzve
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE