5294d51785c528a85cb4e2df6c7dab60_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5294d51785c528a85cb4e2df6c7dab60_JaffaCakes118
Size

40KB
MD5

5294d51785c528a85cb4e2df6c7dab60
SHA1

e4bbabf674bc662fafa109ef32f2d7e495d90d07
SHA256

c5191e6b3a00221983c59c3d4817d29a26f0c078e929a53401feb13e3ec881ec
SHA512

0f95eca848970aabf38f8c98b4768758c4c38dfe396cc117b13c074741a4d51e6f4224200f6f422bea41892e5948b24d733c5fe1c86fb33bbaf252ea464ef6e5
SSDEEP

768:n6tdsKrnMr+u8LEcMv16YHziMkRmGQrjBN4bms5cdmmz3:KdsKLMr+uFcMv163lmGcNN7gmz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5294d51785c528a85cb4e2df6c7dab60_JaffaCakes118

Files

5294d51785c528a85cb4e2df6c7dab60_JaffaCakes118
.exe windows:5 windows x86 arch:x86

773d45c1468496235f40d0936a1c1a06

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetServiceDisplayNameA

Sections

.qhql
Size: 33KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uzejof
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crwd
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.biv
Size: 512B - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE