4dac6ae1eca4b4caad12a61f248d6a29_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4dac6ae1eca4b4caad12a61f248d6a29_JaffaCakes118
Size

497KB
MD5

4dac6ae1eca4b4caad12a61f248d6a29
SHA1

1ca13df29bc6c36a74ee34f962672c0a9bf44cfe
SHA256

a91a285d892123481a5b43f2dd0aa73a7d390ae9f841cbeb1879a685bf929199
SHA512

687fdd761b1da847a88fd786928eb469906ee2167f94819a830fd3bf76075469e92b2c0d25649db67f9fefd112b49ebd345da309c5989451250dfe8b01585b0d
SSDEEP

12288:9PsQ7apK6iGDHW5N3Op5iTVTnY50yyPT/5G:9PsIGr0QMTxPT/5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4dac6ae1eca4b4caad12a61f248d6a29_JaffaCakes118

Files

4dac6ae1eca4b4caad12a61f248d6a29_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c0e70bfa5f73f1f1cef484e2bcb5bf8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA

user32

MessageBoxA

Sections

CODE
Size: 395KB - Virtual size: 816KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 844KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE