5c4363099ba5453eceb4d10b82f652b4_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c4363099ba5453eceb4d10b82f652b4_JaffaCakes118
Size

1.5MB
MD5

5c4363099ba5453eceb4d10b82f652b4
SHA1

bde684aa06a0bc80e88127b5875b613f98a5a3c4
SHA256

9f66a75adecdb382210767cea717e10e7e5b3a00ef46300dadeb2646d1456128
SHA512

3e5aba1eef11c8d7507d2c27d696129a09e396dedfb957087404cd4ea1ea818b8c5c31616fbc6d84fd852e95a65a995c4f8e7eb1d6e3e2c16609a3311f18fd9c
SSDEEP

24576:Zl7CTN8m28EW9d2DfXIUXag6DF5dc1O58t2KhcQ7mOWF8JkxcycyetvzgC7NTt+a:7CKm28EW9YIUXapAOat2K+Q7mOxkxc8o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c4363099ba5453eceb4d10b82f652b4_JaffaCakes118

Files

5c4363099ba5453eceb4d10b82f652b4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f50ae4f4aaa161c10769dd1c53b905b1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
MessageBoxA

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameW
GetVersionExA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA
GetModuleFileNameA

msvbvm60

_CIcos

Sections

.text
Size: 31KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE