423230370796fe2a189a6e917595394a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

423230370796fe2a189a6e917595394a_JaffaCakes118
Size

85KB
MD5

423230370796fe2a189a6e917595394a
SHA1

af202615d6a4d55509a4e2c715ef642b4b900083
SHA256

82db7e0b7c8b8a33a2ebaf6343e13043edb737c8e47e2280de5a0211483a2d55
SHA512

19ab1ebe9642d3f0d8168dd3aa7a1bfbfcf9daf702aa98278de9450b178f9a7a66afb50707d7ef2d7602af1dee6583f602c1e54b10786927d14d98b7cf85d3c3
SSDEEP

1536:p2m92rnpbmK8FcUFRnI/WgA4pAQOwVY3vb7DPG6gVsoaycG5ZGimB:om9SntmfCWnWWgPADz7DL9y5LGi8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
423230370796fe2a189a6e917595394a_JaffaCakes118

Files

423230370796fe2a189a6e917595394a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

wx8id3gb
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nqdi5l9v
Size: 76KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qdpcenjy
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ