46f586922d599463affc812b7650a08a_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46f586922d599463affc812b7650a08a_JaffaCakes118
Size

36KB
MD5

46f586922d599463affc812b7650a08a
SHA1

1021c9e716b333ef75b30aad38adb907612b1843
SHA256

d674b471b15c68e5a2292c1c48970c7d5e63bf7a84b65c38eefd924f4ff4e914
SHA512

a4d1958044206d813595be8e038f981d9bf2b3af8b2c04f9a726564ba3016e577ee70403f54d77bf89996cd2321ec609f001f7f31d08d0e1612538a8a98ad35b
SSDEEP

384:KXw+IrKm3OxJFX2ieZFil/0/z6h4NC2HRKX5XrWVWQqwMqiz:Kg9um3OJ2iRkCy87

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
46f586922d599463affc812b7650a08a_JaffaCakes118

Files

46f586922d599463affc812b7650a08a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

56202e01072be089ee088a723f9bbc95

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
SetErrorMode
FileTimeToLocalFileTime
GetVersion
GetStringTypeA
LeaveCriticalSection
GetLastError
GlobalUnlock
GlobalFree
FormatMessageA
SystemTimeToFileTime
FileTimeToSystemTime
GlobalLock
InitializeCriticalSection
RtlUnwind
GlobalAlloc
GetSystemTimeAsFileTime
DeleteCriticalSection
EnterCriticalSection
ReadFile
CreateFileA
VirtualAlloc
ExitProcess
LocalFree
GetModuleHandleA

user32

GetMessageA
KillTimer
TranslateMessage
MessageBoxA
wsprintfA
SetTimer

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 892B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ