5b7d87fdfe031d630af9694b6eb54ad4_JaffaCakes118 | Triage

Sharing

General

Target

5b7d87fdfe031d630af9694b6eb54ad4_JaffaCakes118
Size

202KB
MD5

5b7d87fdfe031d630af9694b6eb54ad4
SHA1

a594443b3abd6e6b612f3803f9dfa365fb1c1cd5
SHA256

0002c23f50fe24bb8154dca21c98dbcff63814f3e836113ee696386cb517b3b5
SHA512

c841815147f8b6c8cc4a9b5eadf20f60bb25b022c7bec1bfda04767826d38b327b3ea6763b3b1bd4d602b50e0518780d4d26e7f7edfca7faef15b2c3925b9da5
SSDEEP

3072:XJCTWpqbDKCdJkVTIbsqF+yzexOnpR3K50csZLR+88++8oHxzbqLfilUB74XnqrJ:X90DKGzF+KeOpMIRk+LExzWvB74aH9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b7d87fdfe031d630af9694b6eb54ad4_JaffaCakes118

Files

5b7d87fdfe031d630af9694b6eb54ad4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fdbfec85672f73d2a4d49635454936d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
ExitProcess

user32

MessageBoxA

Sections

.text
Size: 68KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 376KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE