69dbfdf8af60e52e367c3e0cf8e53053_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

69dbfdf8af60e52e367c3e0cf8e53053_JaffaCakes118
Size

7KB
MD5

69dbfdf8af60e52e367c3e0cf8e53053
SHA1

8ee8defb05f4f3cc8b443da311537964cec340cf
SHA256

7559f064cf0a3769672f05e19b6e8ef50aec461f08431b6f9aa71717e5ad4113
SHA512

bb2d584b2c465ecd787d727b695c7a65346e95584cafec280eec918ffb558d897ba1200c2f7b28170a236d7a4e33f6ba9f445a9c2065a2d6ddde24855299d6ac
SSDEEP

48:OEPgsj6jSJi1Nq/R7N9scMILi6CDaYad3BABKqwr:nPLjQ2IN6R7Hs1n6TTAa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69dbfdf8af60e52e367c3e0cf8e53053_JaffaCakes118

Files

69dbfdf8af60e52e367c3e0cf8e53053_JaffaCakes118
.exe windows:1 windows x86 arch:x86

bdfc79956271d0b932536061b2636970

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetFileSize
ExitProcess
_lclose
_llseek
_lwrite
OpenFile

user32

MessageBoxA

Sections

CODE
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ