8c560c19c62ca2b3fd8e2c7969cacabf_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c560c19c62ca2b3fd8e2c7969cacabf_JaffaCakes118
Size

177KB
MD5

8c560c19c62ca2b3fd8e2c7969cacabf
SHA1

ed46611dc7ef487692021de9adbd11da277df26c
SHA256

72a561f6942b254b53671c745f57079c3711485695e0d985d3eea8a0445d3ab1
SHA512

0fd69474550ff2911ad15170a4bd52de0b222f98a79b8cbef530fb2ceb3896b4570c42f866885b168664194c46ad253cd4ec95fbae9c07e3570ce7181fa70d6f
SSDEEP

3072:jEkg+8R9Dd4t+lDF+SG2aAKgfMvIxqMaBMpXWwIUPsRVC/qS/T/KmRnttAB:Ikn+f4t+lDoSGVPgfW8DBpXUzR8/qwmt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c560c19c62ca2b3fd8e2c7969cacabf_JaffaCakes118

Files

8c560c19c62ca2b3fd8e2c7969cacabf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

MessageBoxA

Sections

Size: - Virtual size: 2.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 24B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE