307e3bef05f2493bc01ae89113171359_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

307e3bef05f2493bc01ae89113171359_JaffaCakes118
Size

18KB
MD5

307e3bef05f2493bc01ae89113171359
SHA1

6312e5615e373dbafa668f563d68c2769fe29f2f
SHA256

97f726040cad64a6cd5f690103c465d9c1ef8e31b483554d12550229eabc6236
SHA512

d1b64dd0689a1fa3d0140bdc5e240fac803a129e87909617eabc4cce0f14c8b5a198f66b20cd73accbba5a368c751aa17368d80f8bceb601e3feb2be6c894388
SSDEEP

384:IGY4a1XxNrCRjBZ7+MZ8OVpRvx9YdcAcXPSO/sUeut:m4a1v8PrpR6cue9t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
307e3bef05f2493bc01ae89113171359_JaffaCakes118

Files

307e3bef05f2493bc01ae89113171359_JaffaCakes118
.exe windows:4 windows x86 arch:x86

871f566131c40f544851d687e3ef38f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
GlobalAlloc
GlobalFree
LoadLibraryA

user32

MessageBoxA

Sections

Size: 13KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�2�t sec
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SoftComp
Size: 889B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 249B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE