24cb348d878455bd747ce01e2ec7a5c3_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24cb348d878455bd747ce01e2ec7a5c3_JaffaCakes118
Size

173KB
MD5

24cb348d878455bd747ce01e2ec7a5c3
SHA1

dbcb3d7e1dafcb3716e55c53ba4a182fc05b915e
SHA256

46caae5cfc17062858c84bfd32763f2b4ab02ec6f90055b7d1958bb93c21bc3a
SHA512

f24342031902612afd35a240b8565888dff6366d34258cbb0ccf2bdb19361e851242fa04c80becb5261c14ac17d5bbf73accdd569c592a729fb974aa3695118e
SSDEEP

3072:BIuOUUdA/738qFd2oH7KQiaAlMj//cWw3ApE2J759zFsPys/YmYopDF:BZOUUG/7336HxMjcOE2h2BD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24cb348d878455bd747ce01e2ec7a5c3_JaffaCakes118

Files

24cb348d878455bd747ce01e2ec7a5c3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

db7aef33d9c1f6de8949d0d6470ec5e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA

kernel32

GetModuleHandleExA
LoadLibraryA
lstrlenA
GetTickCount

shlwapi

PathCompactPathExW

msvcrt

strlen

Exports

Exports

?PointNextTask@@YGHUtagPOINT@@_KPAUHINSTANCE__@@EPAX#O

Sections

.text
Size: 23KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.split
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE