26e91bbadda98c7eae8e32295a972732_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26e91bbadda98c7eae8e32295a972732_JaffaCakes118
Size

53KB
MD5

26e91bbadda98c7eae8e32295a972732
SHA1

1658fef96c5755230b04e5c3453b1dfd3c2dd452
SHA256

ca4b8a49750175a78f01e7d1f9809fd26a2ee50c9da05318cd207f718564b16f
SHA512

5db370df002fdb30b26a603e9661dcc75591a5f281fb2ccc6989e9eb67f8691926a1f15fb4fd4769752aea320d414a0687a471cc203cd63bb8ad5da890619cac
SSDEEP

48:OEPbJbBGEP4IJsM2M2M2M2x2XGM3mx22M3mx22x22Mc:nPbJb9P4IJd2828XG8282xGc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26e91bbadda98c7eae8e32295a972732_JaffaCakes118

Files

26e91bbadda98c7eae8e32295a972732_JaffaCakes118
.exe windows:1 windows x86 arch:x86

105732f0c6968ac8bea2b4476eda4263

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

MessageBoxA

kernel32

GetProcAddress
GetModuleHandleA
ExitProcess

Sections

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ