3d7486ec11d6fc60eae92a827b471e33_JaffaCakes118 | Triage

Sharing

General

Target

3d7486ec11d6fc60eae92a827b471e33_JaffaCakes118
Size

1.3MB
MD5

3d7486ec11d6fc60eae92a827b471e33
SHA1

60b737a53dbc1e1e33d03e2ba73ae9c8c74f2606
SHA256

c6a624e8b68f20ef94c4751c98bc31f2a20a22055954e1585e34e5d5f7c10f79
SHA512

3faba763f7222ece5a20e80ccd6d6f40aaffe5051240cb15ecf64c317a5502f5b6254d749035411729f9a3545c9f6c736e3e9825a2fd6c291cad609e9e391e65
SSDEEP

24576:cqcdXfs/Ha1JcwDBtKSZbqZD68oDSDzTOYBHF6G7ZgKU06dD3ZfTORumy8q:hRC1ywDBtKhpNDzXBHUGFgJJVTkumK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d7486ec11d6fc60eae92a827b471e33_JaffaCakes118

Files

3d7486ec11d6fc60eae92a827b471e33_JaffaCakes118
.exe windows:4 windows x86 arch:x86

500ff1538958cc73738bf0c262a1773f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA

user32

MessageBoxA

Sections

.text
Size: 219KB - Virtual size: 1008KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 86KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 996KB - Virtual size: 6.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE