74e1bb319faa5fc1dfa98696a07539dc_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

74e1bb319faa5fc1dfa98696a07539dc_JaffaCakes118
Size

2.3MB
MD5

74e1bb319faa5fc1dfa98696a07539dc
SHA1

0dbcee9f14b2bbe1cc6cf7aa5b643e63f9eb61cc
SHA256

4621134d9c508c56400ead1e1a831b25e8e4d7953c5cb6d1c1c4fa8bd507e47e
SHA512

54f938d85b739d64cc755b0e8bc9a78dc2266c4a49428534a5cf9ba59f449592b9b232d671b77e3ecbe8e291484046f967db59fcea7a9673610e7e3b99e68e0c
SSDEEP

24576:AANMP1GJT0fDlS+cxIo+L5YEmgADKx5t5riB51Tc7Ui8U9lmhyMDvPgcqr+uC6U7:AScwfxINSHTcaU9l0D/gYHVEQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74e1bb319faa5fc1dfa98696a07539dc_JaffaCakes118

Files

74e1bb319faa5fc1dfa98696a07539dc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 344KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ev2rrqnn
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 7.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xwazd79q
Size: - Virtual size: 396KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gouuu9kg
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

s842ng64
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ