71f44b5ff7c9403dd5b38f76c638c295_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71f44b5ff7c9403dd5b38f76c638c295_JaffaCakes118
Size

83KB
MD5

71f44b5ff7c9403dd5b38f76c638c295
SHA1

0885d69c982f3f3e5317cb16ff6b1dcc09e7c53b
SHA256

e69fd3d69bbc8c05e37209bdb69bdb6fe69c7764baaeee6573d2b0a6187fb9a1
SHA512

6c02867a9c46bb80f52f6f20730a6891132eda59f55cba57211b6a6cccbce42464e68ad2f5093b4475265df87fe9cf69cbaf19b67c6d1fb466ea284a14085292
SSDEEP

1536:dU7WE2xJr0l2Z0HseUf+kWjYOpmS+rzCBq/7dx2tTk2eCnOnYQUdq8:dsW+H0mkWjX+XC4/32tTk2eC0nUdt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71f44b5ff7c9403dd5b38f76c638c295_JaffaCakes118

Files

71f44b5ff7c9403dd5b38f76c638c295_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

i22tt5dn
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zj36x0mx
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6kkk8qir
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ