JaffaCakes118_685fa057ad6933533694d7df3c85c24e | Triage

Sharing

General

Target

JaffaCakes118_685fa057ad6933533694d7df3c85c24e
Size

541KB
MD5

685fa057ad6933533694d7df3c85c24e
SHA1

22d83b3e19dd604fc199bb4b725300a89f933862
SHA256

3d4d638f616e53c86f098ce666b871ac94a07769983f770c74e53799b90ea637
SHA512

64c1cb51fe16a078b9e6c1df65e4c140047c8e9fdf0677271f95f0f8ca7cdfd411ece296b735a4c7dc274a40c771e4a75277c5f6cfe989d59ccfabe6635f2bb9
SSDEEP

6144:1uWlvbYvf9NGZqqdOAHhH/GGVGGpoGGtGGG0GG9GGG6GGGsGGGqGGGsGGGIGGGsG:AWlvcXqdO2RyvzmUYRGUJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_685fa057ad6933533694d7df3c85c24e

Files

JaffaCakes118_685fa057ad6933533694d7df3c85c24e
.exe windows:4 windows x86 arch:x86

de39dc68941cc6307e3b2590c857a907

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA

user32

wsprintfA

advapi32

RegCloseKey

ole32

OleRun

Sections

Size: - Virtual size: 1.0MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 112KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 356KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 68KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE