46a580002598b5ef41e615e02ff4e9b1_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46a580002598b5ef41e615e02ff4e9b1_JaffaCakes118
Size

178KB
MD5

46a580002598b5ef41e615e02ff4e9b1
SHA1

70ff39e161548d99c83af191df2932d3a1c7a811
SHA256

3547de4413d774f2537d15f29ba85211882d63ec45384459949c1db623bb551c
SHA512

0f8e9520d69972701409c86f496953efff7293fb15ba380e45394cb0613b6335484e0f257961330dd2d1a443fc893357a63491b28c36b780163ca597b745fe6f
SSDEEP

3072:Xd+RAJw8sv4DAFSbI3eK98dqF2N4uR0tAGLU80uzou1Gt/4R+r:ev6cS83X8Y8N4zijpiou0yRa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46a580002598b5ef41e615e02ff4e9b1_JaffaCakes118

Files

46a580002598b5ef41e615e02ff4e9b1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

MessageBoxA

Sections

Size: - Virtual size: 232KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE