2664ba9fbf385f436c77b211d7bbea4b_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2664ba9fbf385f436c77b211d7bbea4b_JaffaCakes118
Size

21KB
MD5

2664ba9fbf385f436c77b211d7bbea4b
SHA1

993df8b3989667a02fb99b92a7aa02e8a28c5914
SHA256

d5c5702c6ae4a85079f4446d25e54d1e70f934a4cd8dd0fb02da69ec40512b66
SHA512

75dffbea6ff704feb6b72cb233d8e1dca364fb458ed59b0653dbecdad2050e6237dfa7db9da98fc0ffccb12622f0204ad18753783107fb3a35c87ed6ceac5c06
SSDEEP

384:Iz9tdSvf+Unh/n68vYoBFx3PZ9oDq1kAN1oysk2jjjjjjsB:az4+Unh/n1vfFx3PH0EkQ1ds

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2664ba9fbf385f436c77b211d7bbea4b_JaffaCakes118

Files

2664ba9fbf385f436c77b211d7bbea4b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

81461c85976af72afb7febe4912f532c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentThreadId
VirtualAlloc

ole32

CoInitialize

user32

CreateCursor
CreateIcon
CreateMenu
DeleteMenu
DestroyCursor
DestroyIcon
DispatchMessageA
DragObject
MessageBoxA

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 50B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ