073b82dd7dd90ab8b4bc41840e676038_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

073b82dd7dd90ab8b4bc41840e676038_JaffaCakes118
Size

586KB
MD5

073b82dd7dd90ab8b4bc41840e676038
SHA1

d1b7777c79bced7613122b77803c6d1081802ef5
SHA256

db2845ce1401a81570e3361f2e3c31eab100f2157bc6ee9cd2083e6ebe971a63
SHA512

5550c08fa92f741fcecc15a1c2032d7031b525105bd4365316d726620024e4d08f63126eb132b509afb1dbc0b28fddde75a79cdbbea5b058f14d071cd37e8018
SSDEEP

12288:upaBAF6KlJuAcHIOZUzSvCjA9br8uRH1AWGYqxfrh7j9/3tgAplHpSyhn8:u4BxCAHID6lEuH1AIm/9/3SiJSz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
073b82dd7dd90ab8b4bc41840e676038_JaffaCakes118

Files

073b82dd7dd90ab8b4bc41840e676038_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tumecbyu
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

wx76rf7o
Size: 356KB - Virtual size: 360KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

u7ubdu29
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ