3862369734ec568b0ef0037f507b1366_JaffaCakes118 | Triage

Sharing

General

Target

3862369734ec568b0ef0037f507b1366_JaffaCakes118
Size

40KB
MD5

3862369734ec568b0ef0037f507b1366
SHA1

c163667907b8ad9c464922144711b76fb2b5b6ce
SHA256

d508e30ba2d8d587ca029ae7e0771c522ea97cec375075c9d46f7546cb2b6d18
SHA512

086811669bba903ba10e317467f28a9038fffa37e25ed0f0623d9bf8565eff71b9ad2ddfdee8d35c05e3e3d867989a9a0870c04be8fd1e7129b548124a65bcb2
SSDEEP

768:XpqOUXQ0nKlZF98njQYO9eoo2q3S3mkljvc9wXYG2bQVgGQKdMH:ZqOUXPKF98njL5HS3TjvpoG8Q6GQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3862369734ec568b0ef0037f507b1366_JaffaCakes118

Files

3862369734ec568b0ef0037f507b1366_JaffaCakes118
.exe windows:4 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Sections

.perplex
Size: 11KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE