60d06e2d9ec29c7bac43722f58a6e15e_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60d06e2d9ec29c7bac43722f58a6e15e_JaffaCakes118
Size

73KB
MD5

60d06e2d9ec29c7bac43722f58a6e15e
SHA1

c4a8a7ccefb02c01f24af9a1878cfbe10bfc976a
SHA256

cf6a9288014798aea604193476b17ceafe16338682037b0339f67bc86924c2c6
SHA512

a5cd52210df21ed812d1dbfdf478b0aafd10e11be9ff813f39fad34e64d33182dc6282057560389999938a5cee5d0a9023b1e67717181e2218a4fc9ffcba6275
SSDEEP

1536:2Lo5Fp+e5jR9POaHNKnXFn/Gt+53SDYFfpojYspEsMDxBsD3K:+oh+OOatKnVnuc19fMTEjxe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
60d06e2d9ec29c7bac43722f58a6e15e_JaffaCakes118

Files

60d06e2d9ec29c7bac43722f58a6e15e_JaffaCakes118
.exe windows:1 windows x86 arch:x86

e2649837c59f87885ca4eb82bebd799b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
VirtualFree
GetProcAddress
EnumSystemCodePagesA
GetModuleHandleA
ExitProcess

user32

DialogBoxParamA

Sections

.code
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 282B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ