94ca8cde8e6d4b1cf23d9c90968c23ac_JaffaCakes118 | Triage

Sharing

General

Target

94ca8cde8e6d4b1cf23d9c90968c23ac_JaffaCakes118
Size

50KB
MD5

94ca8cde8e6d4b1cf23d9c90968c23ac
SHA1

c3a4fc5b883f212006e520bf043f4652546efb8c
SHA256

eb4fd3a483997690f94c029fdcebaa82f4f1887ec9172318ac73bda468c98b50
SHA512

07c709ade0dfd2396643342caf6999dcca01e2041b0e7d3b3805c7d05c4fd93d67211fb026e2f7a428c89786e7663a215922e1eaf813478be694bd560934d79f
SSDEEP

1536:vDqiwsfE3GOKrAUJVtjVzb20soLqGN1u:LfM3G5kUJ/BC0NP1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
94ca8cde8e6d4b1cf23d9c90968c23ac_JaffaCakes118

Files

94ca8cde8e6d4b1cf23d9c90968c23ac_JaffaCakes118
.exe windows:4 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

.code
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code1
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE