63c74d54f869fac2c7b841f546a8eb3c_JaffaCakes118 | Triage

Sharing

General

Target

63c74d54f869fac2c7b841f546a8eb3c_JaffaCakes118
Size

11KB
MD5

63c74d54f869fac2c7b841f546a8eb3c
SHA1

c824bd6da737b804f0170d37bd774029dcb5afc1
SHA256

414825bf338d50da8f17f370f2d78de2d09f1c5265a1713ad9b0af700f009b84
SHA512

4d7bb1b293b7373c2d43daf6981e40126693a2fa71aafd8f2c35bb59731e2c2b4afe03f6c2ef63f8440fee085676022b39ffb2322b6c0085d47de3235ef345c1
SSDEEP

96:nBpipdfCVsmX6RBb1h0hnF+aFKlu6UKnOtJyg4DaGuVsftursOSBN:nripdfosm+bYkmKCKOKDSGfQrsO+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63c74d54f869fac2c7b841f546a8eb3c_JaffaCakes118

Files

63c74d54f869fac2c7b841f546a8eb3c_JaffaCakes118
.exe windows:1 windows x86 arch:x86

ad2432ba2fd956ab5bb6e42a2fb5d696

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

VirtualAlloc
ReadFile
CloseHandle
GetFileSize
SetFilePointer
ExitProcess
CreateFileA
VirtualFree
WriteFile
GetModuleHandleA

user32

MessageBoxA
LoadIconA
EndDialog
SendMessageA
DialogBoxParamA
SetWindowTextA
SetDlgItemTextA

Sections

CODE
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ