186c14e21425f033e8f54cd149836e94_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

186c14e21425f033e8f54cd149836e94_JaffaCakes118
Size

2.4MB
MD5

186c14e21425f033e8f54cd149836e94
SHA1

5298b128f73bab8fc2438ff0f3b883ed61226a0d
SHA256

15febd4eb8fcbb979d7e160c4154e61f631cf65e6661573566a8ea35e795aeff
SHA512

a142ae2ab7f82f369c195aeb6c52eb4b4a85520a4ec0fd7d278ab47c3fab49025ae740c08aa6cb5ca4a4910e489e759d0b436547e31049400bcc9da06a0470d0
SSDEEP

49152:rV+JGyVQjnMbKmgDyhZxoxcIjfJjpWr6er90mhKvMYWjKSxLHWFDiIfM:rIUyCjMblhouIjfJ06elYvWtxUfM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
186c14e21425f033e8f54cd149836e94_JaffaCakes118

Files

186c14e21425f033e8f54cd149836e94_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0febe73e161d317307f1950a14a77266

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

advapi32

RegOpenKeyExA

comctl32

InitCommonControls

Sections

Size: - Virtual size: 5.8MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 66KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE