4660d901fd66a55246fdd72054090a9f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4660d901fd66a55246fdd72054090a9f_JaffaCakes118
Size

323KB
MD5

4660d901fd66a55246fdd72054090a9f
SHA1

de1944623516e9c1dfa112378bf50c2b5bdb8275
SHA256

6a50cf765c9521a9b6fe5d90da5031c55949756dfbf384b03442161bf3b0fc68
SHA512

ba31dc72df2ea3d471ed03920b20eaa08b179b20cc1238f709233130af36dc3f2828af5f85a6ee944c740a28e15e8a7eef6f4581feb85dec31a69a09b428e093
SSDEEP

6144:y42Rz8nfUWKQmHbpumOMd18LPVSnEXSXfE2erZEC8SQbDzsALvWOI59hOpDhx5gV:NkzXWKQgpjBdM9S6SXM5rWR/zJvWr+Dy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4660d901fd66a55246fdd72054090a9f_JaffaCakes118

Files

4660d901fd66a55246fdd72054090a9f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0a2d7141fce23bc9f792c1778329828e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
HeapAlloc
LoadLibraryA
HeapDestroy
CloseHandle
ExitProcess

user32

CreateWindowExA
wsprintfA
CloseWindow
CharLowerBuffA

advapi32

RegEnumKeyA
RegSetValueA
RegCloseKey
RegDeleteKeyA

ole32

CoCreateInstance
CoRegisterClassObject
CoInitialize

Sections

.text
Size: 183KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 67KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE