8706f85d9e518a6044b7cd8c64acd594_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8706f85d9e518a6044b7cd8c64acd594_JaffaCakes118
Size

118KB
MD5

8706f85d9e518a6044b7cd8c64acd594
SHA1

62b45658ae9e1783ebb697d7bafa57cbaabab0e0
SHA256

8bbf650eb7f426054eb6353e75f46412c43a28140cebcfda59dfeb385b58d8bb
SHA512

684484b0050e0beff38dac93ee7dd476b8de89ba37bd55e431f291355789cb7f159f1cd45df5a1d4bb42019a594b16fe58ad8e32e853ce75cbb13306cc3fa168
SSDEEP

3072:RYkBYRU5dj/IRHnHRnRsdT97t1lx+9+F:J5Tgd0T9Zx1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8706f85d9e518a6044b7cd8c64acd594_JaffaCakes118

Files

8706f85d9e518a6044b7cd8c64acd594_JaffaCakes118
.exe windows:4 windows x86 arch:x86

68140a9a4b28871f88884585977b9263

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
CompareStringA
GetProcAddress
LoadLibraryA
GetTickCount

user32

DispatchMessageA
TranslateMessage
GetMessageA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ