2bf3a62b0656ed8e404b21eb6221150a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2bf3a62b0656ed8e404b21eb6221150a_JaffaCakes118
Size

805KB
MD5

2bf3a62b0656ed8e404b21eb6221150a
SHA1

a1a288e1fa8283e73bf7c55557ff96027d70add0
SHA256

4002718e332c9c7a7310970008dc7699a0c1d2dab5d54a67862ebd02af19012e
SHA512

475b21eefa9669d51b15be311369ab04c2f310fa5970a60b2c212daf84fc7f543c6770928abc38dc9ea0f3f5a13f12e75e264c59eb53fbbce19d87b126e512e1
SSDEEP

24576:hUNnrFh0FmkavjEdeRHDd9nVdF0TF49dceqao:UZJk6kyR9nVdq49dcSo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bf3a62b0656ed8e404b21eb6221150a_JaffaCakes118

Files

2bf3a62b0656ed8e404b21eb6221150a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Sections

Size: 16KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 21KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE