8ef14f23532c292d96342be854abde00_JaffaCakes118 | Triage

Sharing

General

Target

8ef14f23532c292d96342be854abde00_JaffaCakes118
Size

180KB
MD5

8ef14f23532c292d96342be854abde00
SHA1

b85f3ae5f4a7b30bd8d23fbef09605c8eb198b28
SHA256

977d85e091fd2709bbed2a9eb96ad7574a6f1dffc09f8cbd9dbacda91693bf02
SHA512

a6a69ee24d26e0717e29c8cf18a0a9520da6074387c7d517d49a479b6167aa48e1d3242ae0b4e2a1774156eb77ed7b9609932e28106a6b2c0561c2ddd9aae63c
SSDEEP

3072:qxuZbgE96Iqqna4j+uVZsvnNUvhZwTaF6dKJ00MZt606ThdtalJXH4kr8Zm:qxub96Jqn1jVZsvavhy+m1iN9qJ34kr7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ef14f23532c292d96342be854abde00_JaffaCakes118

Files

8ef14f23532c292d96342be854abde00_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

daywt57z
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

dw67xbzu
Size: 139KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

49ilink3
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ