4074811c71554d42f31e438a489009ef_JaffaCakes118 | Triage

Sharing

General

Target

4074811c71554d42f31e438a489009ef_JaffaCakes118
Size

545KB
MD5

4074811c71554d42f31e438a489009ef
SHA1

fa6a689dcfe6f5383193ba2a0e0553fbc5f1c1a0
SHA256

6d94832d1cbec6f63a345c16f3f61789fb7aad162656682907af0a2dc42d751a
SHA512

570e98d3644f8de9647997053e4d778f652d040568c2cf25e82c2cc728b4b142788ca403cac0be33eaa1b04c789014778de15c544ca66095e61834f441ea9b32
SSDEEP

12288:obR2iV3SbpJxS5kP6NGUrL1K+aowflXkIhN0meL0:IgiV3S1GmiNGUvg+a3dkIX0meL0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4074811c71554d42f31e438a489009ef_JaffaCakes118

Files

4074811c71554d42f31e438a489009ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

87ad89a49102767cac2cf147bc4ea806

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA

Sections

rnxhnfxl
Size: 50KB - Virtual size: 508KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

oghrinee
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ohcssfre
Size: 585KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kzdmeuli
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE