f71d7d7af7775ac354be8215e6250361_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f71d7d7af7775ac354be8215e6250361_JaffaCakes118
Size

96KB
MD5

f71d7d7af7775ac354be8215e6250361
SHA1

657000705efc574734ddd604771563659d997e07
SHA256

350ca160ef42e2fd20d0dba075ad8875714c1284b328e01b701faecae640e9bd
SHA512

d93eb91a90f13e3a20087dba031f5266d1dc687e6bf157d676320d2b9b2bb4b183f62522bccaae787a1ae27670867197d4502188ae9d327237361ed29137cde8
SSDEEP

3072:K1O6B1QQqf3op3EKZw4mdMuuXBQm6D7YP:iO6BpqglE4w4QMu8BQmQ2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f71d7d7af7775ac354be8215e6250361_JaffaCakes118

Files

f71d7d7af7775ac354be8215e6250361_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

PESHiELD
Size: 54KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PESHiELD
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PESHiELD
Size: 15KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PESHiELD
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE