fe095e09b1d9e558fcf577bb8882eabf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe095e09b1d9e558fcf577bb8882eabf_JaffaCakes118
Size

207KB
MD5

fe095e09b1d9e558fcf577bb8882eabf
SHA1

999ee4966ea8254a694239842a125754b9f858e3
SHA256

c76ac5bb3aac5fd7da8fe870895f2d17e3c14fb0077239f0143e42f3c824b942
SHA512

0310df9e3d7b84e5cc6d772bbfb03253f2674fd01c332f38a6ac7c2e6f6582b10ba05233ba7af0a68150c259b7a5974f1f9e6a9f5ae87845436b51b8c423378d
SSDEEP

3072:3rFsOaEyGynxlQJGRxCD/guYfej7LZchtY12QQ3/JEcrITX2fewDklVyD6X:yOartxlQJG6pYfeyMkrrBeckHK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe095e09b1d9e558fcf577bb8882eabf_JaffaCakes118

Files

fe095e09b1d9e558fcf577bb8882eabf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

CODE
Size: 158KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE