29befb64e7f58ecb9c7152ab4e7d1970_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29befb64e7f58ecb9c7152ab4e7d1970_JaffaCakes118
Size

86KB
MD5

29befb64e7f58ecb9c7152ab4e7d1970
SHA1

c5ba876e81321a4c73e3673e2d40d9bc75039f00
SHA256

9dfa739655a380621fe842cc72cd4ec439ddc1bbabe0e676b7a7baa9315a8f58
SHA512

053c516e2810eede264f4cbf483a26c60f3c5bf784a8d5d56abfa800863b156dfad1fff10302c8771b792216e1c32d2dd8b953f41f5d26d6eb53020bd9fd8c36
SSDEEP

1536:+80722l/4h3vnAJyJ5KbGw4Iwjh7m1ybnmiFZq0v+snf9meDxli2gU:trNh3vnAJyJobGw4Iwjh7m10nmiFZd7Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29befb64e7f58ecb9c7152ab4e7d1970_JaffaCakes118

Files

29befb64e7f58ecb9c7152ab4e7d1970_JaffaCakes118
.exe windows:4 windows x86 arch:x86

22deaa3e5166e3019a02358581c9a9ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lopen
ExitProcess

user32

MessageBoxA

shell32

ShellExecuteA

Sections

Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.svkp
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE