5f5e0db97210078433f224b751d6d223_JaffaCakes118 | Triage

Sharing

General

Target

5f5e0db97210078433f224b751d6d223_JaffaCakes118
Size

51KB
MD5

5f5e0db97210078433f224b751d6d223
SHA1

9fd9addddbfe8ca5a71ffc00d7b53f683e50203b
SHA256

954be5d39d541fcfae809ce8936d0d6ccafcae3e263974e48f93362027fa96c0
SHA512

43bec977bda325a81bd3837d174bd86f499c2dfe61e960155ba58be8c4cf4730d7022dbd24f2bdc37a269dea9dc9316c9674b8a70553b208c0febc4fc4fd2a53
SSDEEP

768:RqQJJhzsFkmvWbm6Lo/SYXC6p5tNwQhSY4Y2ldtP4EwIL0LvoP2w5b3:RqQC6ho60xfb/Kgs07S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f5e0db97210078433f224b751d6d223_JaffaCakes118

Files

5f5e0db97210078433f224b751d6d223_JaffaCakes118
.exe windows:4 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

.code
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE