72d6b7646959dec3f0b7a6fc7e25d3b2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

72d6b7646959dec3f0b7a6fc7e25d3b2_JaffaCakes118
Size

14KB
MD5

72d6b7646959dec3f0b7a6fc7e25d3b2
SHA1

8fd7729527236e0720b57c5420bf3ac6b3752660
SHA256

e3cc8d89fb69d1c485ba346e6734a15fbe03e49eb0da9a1cf1134f3f6f9e9288
SHA512

fabad15d9dd31c3a9bf735afe51121db0d04f3077d38491d9ea8cc2afb02944dda91f435e49ac6b4fa24114bb1bb19bb569e4dc6fecd83588e68703907e7e5fc
SSDEEP

384:MOhqYwZVsUDDerZrpfUBU0+xUXTAIinNvtH:jhq8UDEZpfU20+GCBV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72d6b7646959dec3f0b7a6fc7e25d3b2_JaffaCakes118

Files

72d6b7646959dec3f0b7a6fc7e25d3b2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

.code
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE