37415194fc7c1bda23b7880e8f65ff22_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

37415194fc7c1bda23b7880e8f65ff22_JaffaCakes118
Size

400KB
MD5

37415194fc7c1bda23b7880e8f65ff22
SHA1

8ec0d656cf21d8a5a6d06b28dca09afe999a0861
SHA256

48b9add28390be1760408536d9bf773a87f4f472f5d2a4a2c4fbdc26103ece55
SHA512

4d2fac15d6c79260b60ca5638b44ca4e16a901e9e7723f6fd0f661fb8dd419eebbd36d9434cf0a3687ff2c313c45c8fd073634d27e4a9380494e67972df52666
SSDEEP

12288:CG7Ig4LaJEKf7AgQ4mDFk4ioIRk9Km5lU:BYav9Q4mpk45Iik

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37415194fc7c1bda23b7880e8f65ff22_JaffaCakes118

Files

37415194fc7c1bda23b7880e8f65ff22_JaffaCakes118
.exe windows:4 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Sections

.rsrc
Size: 90KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 247KB - Virtual size: 844KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE