862caa1e85272e95ca9c19b46516cde5_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

862caa1e85272e95ca9c19b46516cde5_JaffaCakes118
Size

342KB
MD5

862caa1e85272e95ca9c19b46516cde5
SHA1

c60f3a2e9befdad5c6fe75c10394da3ea3af169c
SHA256

76e765b63f41b88331609d1189f7a5a3cdc12626b14448f71b35ad42348b378c
SHA512

ab73f2f99de9e7e8b86d40989c0b36654e99233aa8001ba7f9a2e4d6628cd4ff142fb154393b40ec71bffe607a16b68c5ba12b5ce4102d07ba2f10b9282355e9
SSDEEP

6144:x0/70WPJq6Glx1GBMrjM4XyOtyFpKxkpphvVlinM3KeLAR/hAVCMpQO4Pu8k:mRYx1GBqY4ltyFZpDv3weLKK14c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
862caa1e85272e95ca9c19b46516cde5_JaffaCakes118

Files

862caa1e85272e95ca9c19b46516cde5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

52bcca0293a2e7268dc0bc2b29d8148f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

MessageBoxA

comctl32

InitCommonControls

Sections

Size: - Virtual size: 432KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE