2feae681e3ddf7c3810ae2ff6ce67a57_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2feae681e3ddf7c3810ae2ff6ce67a57_JaffaCakes118
Size

776KB
MD5

2feae681e3ddf7c3810ae2ff6ce67a57
SHA1

bb98f4fe1501b80a1a8682f9aed85bcc82ddbaa9
SHA256

5038661dba3b18d425743f796f1faeb5944828d7c3488f165d2ae2cd3c94ea18
SHA512

a006496dfc592f94d05c5f807a1d964e3013f16f2dfbbf58cdfc320ca53e281d5317fa17e0d35885daddee1d8fe7917d7ddc6835082acb1921f9ca428920d605
SSDEEP

12288:6a2C4V/7cfFRzlakyqSe0Wn9D5ujf9UuqmpplpGoGL3etQoMiXM8gxf/Sj4yQD/N:6nC4mnMc0Y9OmQ563ey8gZqj4yQDl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2feae681e3ddf7c3810ae2ff6ce67a57_JaffaCakes118

Files

2feae681e3ddf7c3810ae2ff6ce67a57_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

9ndwic9a
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

suwlgu8w
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

czuf.uf4
Size: - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

g8878mpd
Size: 78KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9o.1w.zo
Size: 32B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ