611f4e699806dc6886463af5f322e236_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

611f4e699806dc6886463af5f322e236_JaffaCakes118
Size

663KB
MD5

611f4e699806dc6886463af5f322e236
SHA1

677274f038dcd01a3a70b5d8061e2e7ef0c63f4a
SHA256

07204af0477e139bf1cb2b3f88e88a8aa5a9a5a49ad35b0a24891f6c0feaf2b8
SHA512

ebc9baadb975bd2610fb9ec0681e5affa307b661b1f5f842a4abf65292452380549aa280980d5d62e7dce5799fe4a8b55c7af64d170afdca60e7029c72695597
SSDEEP

12288:f8va7TIMzh1YiMt+roKIwE9eFkexMgLJ2IFgVFoLO4pFW:f6a3IM9eBg3E9VINgVOLO4e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
611f4e699806dc6886463af5f322e236_JaffaCakes118

Files

611f4e699806dc6886463af5f322e236_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0ad094b66f36e5686c46c3e49ee980b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
EnumDisplayMonitors

kernel32

GetModuleFileNameA
lstrcatA
SetFilePointer
LoadLibraryA
CloseHandle
CreateFileA
ExitProcess
GetModuleHandleA
GetProcAddress

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 374B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ