6ffde3c1f09d9396125110917f2edf5a_JaffaCakes118 | Triage

Sharing

General

Target

6ffde3c1f09d9396125110917f2edf5a_JaffaCakes118
Size

398KB
MD5

6ffde3c1f09d9396125110917f2edf5a
SHA1

13288abefbc0785230d1e527edd47e339baf4f4d
SHA256

f28e91a106f930eb9022227e07a158a1c295c41ab8369ba1b3b40fd48fd9e7f7
SHA512

255578fad7116087492d37a88940725cfce20a50264ce334e9d07821a05b2feaf61079b7eeb64a8d27e4f193a886209aed35755a30b2c972af05a527c095bc8f
SSDEEP

12288:fwquMcctG1/q7AgQ4mDFk4ioIRk9Km5lUreeP:HuMptj9Q4mpk45Iik

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6ffde3c1f09d9396125110917f2edf5a_JaffaCakes118

Files

6ffde3c1f09d9396125110917f2edf5a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Sections

.aspr
Size: 90KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspr
Size: 15KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspr
Size: 21KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 245KB - Virtual size: 844KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspr
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE