2f926afefa2a4d48072de0352354ce86_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f926afefa2a4d48072de0352354ce86_JaffaCakes118
Size

28KB
MD5

2f926afefa2a4d48072de0352354ce86
SHA1

3cc1db621a424738cb8c2749740f8fd969d3a843
SHA256

8dd05033a02357dc4dcc35eff4f61515819cc3ba369e82ae9ff65d7733cbf616
SHA512

b6e887f84eed8d4850df930641f8182c898502d95928de82d9323fe9007a359b414128afc53a5c7be5cfef82ed6ce5f62b49c4d88094a1cd46b62505c6baa966
SSDEEP

768:7yXyziedh3+HruJD8FI6ZxN+kDaL7aGGjzgxg2V4AN7xDeEraHg:cyzbAuf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f926afefa2a4d48072de0352354ce86_JaffaCakes118

Files

2f926afefa2a4d48072de0352354ce86_JaffaCakes118
.exe windows:1 windows x86 arch:x86

d5e0355f8764c235b38759b860077ceb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA

user32

MessageBoxA

Sections

.alex
Size: 10KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.alex
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.alex
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.alex
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE