a04a98c6f026534061c33be6a2305b1d_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a04a98c6f026534061c33be6a2305b1d_JaffaCakes118
Size

331KB
MD5

a04a98c6f026534061c33be6a2305b1d
SHA1

4fba61c36d65a02e91a874c9de2ee62dda9ea600
SHA256

9cc78ed7f16d4d6a848c90dc72e5320df5cefc4394832932065b4b5d5d4a38d1
SHA512

3410242cce2da883fa5ad3a0ca533d1814565c851b626c6b4ac7b10ce50eda254301511e7c0178052286a51991c8b74d152bb799cedc7dabad3ca033fe5bfa73
SSDEEP

6144:3ReUZhTJbdzxWbdak1D9mCuURRQF+/DeOa72TSw6V15A5:H/dFWbdaknCUR+F+/DeT72Ww6V15S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a04a98c6f026534061c33be6a2305b1d_JaffaCakes118

Files

a04a98c6f026534061c33be6a2305b1d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

99192e22414fae97de7f93bcf61aef1f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameW
GetVersionExA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA

msvbvm60

EVENT_SINK_GetIDsOfNames

Sections

.text
Size: 21KB - Virtual size: 460KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE