f23fa70ea9cf01eb957ccc82215a95c9_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f23fa70ea9cf01eb957ccc82215a95c9_JaffaCakes118
Size

109KB
MD5

f23fa70ea9cf01eb957ccc82215a95c9
SHA1

7b592e6a76fffb75be95ad94e84aaedc00933ffa
SHA256

f9a8edf5bd64c62ad17b437870c343daae0a4900427cea2cf982bd4b78227c00
SHA512

ab2aeea5a3ff32580c04cb5ac91e9056880e8e91f7cc88624cabacd7619815eb496c6fc3b6c6b86feff45be4436e1f98f1f1cca2ad2ac3ffd7e0314e411a3488
SSDEEP

3072:yaSMJSOt2FBWhaRuvyPuqJKRdCDum8I1cwhgV5:y3/OcFXuvyPjs858Scwe5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f23fa70ea9cf01eb957ccc82215a95c9_JaffaCakes118

Files

f23fa70ea9cf01eb957ccc82215a95c9_JaffaCakes118
.dll windows:4 windows x86 arch:x86

500ff1538958cc73738bf0c262a1773f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
GetModuleHandleA

user32

MessageBoxA

Sections

.shrink
Size: 71KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shrink
Size: 20KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shrink
Size: 3KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shrink
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.shrink
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE