14b07939a6ac1c4fc491ec4e31e654ff_JaffaCakes118 | Triage

Sharing

General

Target

14b07939a6ac1c4fc491ec4e31e654ff_JaffaCakes118
Size

10KB
MD5

14b07939a6ac1c4fc491ec4e31e654ff
SHA1

a5198c1d3a35170263393fafcc7a44f6c1a4e2d8
SHA256

63299b755e88bd664c27dd4b9e89e0cd3579ed54928205be494fb1b888786030
SHA512

4b12d098259bd2300eca58b4a7e4a892592d92fe69efa7cde93da47482e9fba93173388b5ca940fe18055809bb70a04753bfa5fca7b57dfced25b9b1eaa13190
SSDEEP

96:9vtk7bp0+dvlBgrHBZ38+zO+aEbfULFDZH:Vtk7b9Cr3VzJzMH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14b07939a6ac1c4fc491ec4e31e654ff_JaffaCakes118

Files

14b07939a6ac1c4fc491ec4e31e654ff_JaffaCakes118
.exe windows:1 windows x86 arch:x86

182004accebb938b3db8cceb3f14a5e1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableA
lstrcpy
lstrcat
GetModuleHandleA
ExitProcess
CloseHandle
_llseek
_lwrite
SetEndOfFile
CreateFileA
GetFileSize
SetFilePointer
GlobalAlloc
GlobalLock
_lread
GlobalUnlock
GlobalFree

user32

DialogBoxParamA
SendDlgItemMessageA
MessageBoxA

winmm

PlaySound

msvcrt

strtok
strcpy
strcat

Sections

data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

code
Size: 2KB - Virtual size: 980KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

imports
Size: 712B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

relocs
Size: 496B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 764B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ