4258a649672a057fadc2e0be84ad0b02_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4258a649672a057fadc2e0be84ad0b02_JaffaCakes118
Size

33KB
MD5

4258a649672a057fadc2e0be84ad0b02
SHA1

0aebb8706fdeb135f99848bdbe09d187bc96bbcd
SHA256

453566b024568d4627b320edd92f76b3dc0de4af6e99591b18f01cb01bcf0167
SHA512

636e52c7e7e2b8b09ff91e5d3a2a16f5945649d6d0042634f37a8e57ace87d4046b076a05ac7a9aa0d7d770b776823600795e8fa4a36dda4d3a3d65fa05aec48
SSDEEP

768:Oerz5NDSFQbCcuK/OeZrHoytOjCO65MZCAi:OIVuG/drHomOm5MZm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4258a649672a057fadc2e0be84ad0b02_JaffaCakes118

Files

4258a649672a057fadc2e0be84ad0b02_JaffaCakes118
.exe windows:4 windows x86 arch:x86

26beb8f2b3c853741678e2d355d461ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualAlloc

user32

CheckDlgButton
FindWindowA
GetWindowLongA
SendMessageA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 310B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE