27b8677f0abc153e358558f0760d485a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27b8677f0abc153e358558f0760d485a_JaffaCakes118
Size

133KB
MD5

27b8677f0abc153e358558f0760d485a
SHA1

1a0fbbc8fa32dc92d59aaa162502436265f01757
SHA256

13dcb6b79145c443683f9e1c013c0596959b7b9d83b5a9c30d4dd29731ceef1c
SHA512

b900bcc01d6d756e4fd55fdb57759003b3cb51f2a904d421c37b908342f33cdcb13e225861c7e7ce6d23f15b5807c0bcb3b2e927fbd9efe75f01b3cf36bc016c
SSDEEP

3072:GhaQyhRT4DFXluwD9w47uooonYotTee6Fb:bpSVus9CAYotv6Fb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27b8677f0abc153e358558f0760d485a_JaffaCakes118

Files

27b8677f0abc153e358558f0760d485a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

22deaa3e5166e3019a02358581c9a9ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lopen
ExitProcess

user32

MessageBoxA

shell32

ShellExecuteA

Sections

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svkp
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE