271ce7df0e73265e685cec3cb381d2e8_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

271ce7df0e73265e685cec3cb381d2e8_JaffaCakes118
Size

345KB
MD5

271ce7df0e73265e685cec3cb381d2e8
SHA1

b53dab3b56d40f80772903c7a2195abfc4af822a
SHA256

9dc4dba1dd03733c8e676e342131b76f0827a721450dab577087afaf6d0d047c
SHA512

ba90c18d9e774405663bf76dd16193d95fb19fd54be3ee0276c85b8b3c9333a44f11dc3f77f3ee4cc4dd266c692038ea273960626ce9c20c85ec18913eb7c79f
SSDEEP

6144:r5PInMS+UJfY5J9Kezs4LhSbDt+aMMRymflghZ9Bd7bpmNy1pg:lP+MS+UxYN144LGB+aM+ym+hX4g4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
271ce7df0e73265e685cec3cb381d2e8_JaffaCakes118

Files

271ce7df0e73265e685cec3cb381d2e8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de39dc68941cc6307e3b2590c857a907

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA

user32

wsprintfA

advapi32

RegCloseKey

ole32

OleRun

Sections

.text
Size: 176KB - Virtual size: 504KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 68KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE