3b0ff1f469a0ad8d69055549e9f1eeb7_JaffaCakes118 | Triage

Sharing

General

Target

3b0ff1f469a0ad8d69055549e9f1eeb7_JaffaCakes118
Size

97KB
MD5

3b0ff1f469a0ad8d69055549e9f1eeb7
SHA1

9e57ac35b04a933b29019227179536cdb48dd32c
SHA256

a383e59462df724460f317aa99638e084c0fa327e87feb6f682d305b966b7869
SHA512

0cc16b8ddf4b6f9f1d3e993d2096e5155fc237d1e95b46ea6e77406cdad495743ba88f910d2e517a6eba9a12d1c389026ca0d3cd6b619f8678810bb4f2ab6fa7
SSDEEP

3072:d6nHHMys9Csn5rapTNb5FRTUz8xGMnjXZCQVKbIC:AnHHMpDaVF5FRTUAfXzC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b0ff1f469a0ad8d69055549e9f1eeb7_JaffaCakes118

Files

3b0ff1f469a0ad8d69055549e9f1eeb7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c2d3c56017ffc9f272aae4a4d190dcc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

comctl32

InitCommonControls

Sections

KuNgBiM
Size: 69KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KuNgBiM
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KuNgBiM
Size: 6KB - Virtual size: 796KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KuNgBiM
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

KuNgBiM
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE