18d4295329f7b85776a00f22da7e082b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

18d4295329f7b85776a00f22da7e082b_JaffaCakes118
Size

243KB
MD5

18d4295329f7b85776a00f22da7e082b
SHA1

c99a6c27dbf47a7e223c0e1ed729c5741f89ac61
SHA256

564899f93edaf6a817b4d2dcc16f8c0dcf38925390bab9a062192e8ed347d90b
SHA512

8a629346fe953d4f35b68aa16ff6abb79ec58ecd6bfe1f121f3cda969b13fc18d8e69995ac6e0b61f2b819c147f84fb69ccd967843d4064ee87055672f08b8bc
SSDEEP

3072:/QapG5W3xVCBkQwAORc/O5mzLH7Obmcu4EnVSWlHmVLeeGtFJxuzFmF7Dt:/QapGk3xV4w6WQnibmcu9GVLvkvxuC75

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18d4295329f7b85776a00f22da7e082b_JaffaCakes118

Files

18d4295329f7b85776a00f22da7e082b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

5381004
Size: 88KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

5706220
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

0942157
Size: 101KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE