26ead63c99d121dd3ab15df99558a500_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26ead63c99d121dd3ab15df99558a500_JaffaCakes118
Size

86KB
MD5

26ead63c99d121dd3ab15df99558a500
SHA1

6673cb8aabbf2c45c837ae2c6b872f3b012d5711
SHA256

4657e17ec0579b0eb8b1a6d7177f05a6a06fc19a0e05c25167b9d97205124f80
SHA512

570853c030933370513ac4661265058f4321d24e8eed99c643e3064981a4c9488e47b3d3e4c0e63c2f5093f60139f983cb3225c82637d7f35c4f703a424624a6
SSDEEP

1536:Ipy0CwNcg+6k/8M/taoQXOeidJ9ljLy57+uIvjOYlKisd+vnkEL:IAQ/kh/taoQJidJ9l/U8OYlBsd+vPL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26ead63c99d121dd3ab15df99558a500_JaffaCakes118

Files

26ead63c99d121dd3ab15df99558a500_JaffaCakes118
.exe windows:5 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Sections

.text
Size: 43KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taz
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE