9fd3fadfaec437f248e0ad45a8c6128d_JaffaCakes118 | Triage

Sharing

General

Target

9fd3fadfaec437f248e0ad45a8c6128d_JaffaCakes118
Size

150KB
MD5

9fd3fadfaec437f248e0ad45a8c6128d
SHA1

2e20ade6bd2e8392521927181f15285a4d3ad59d
SHA256

a48e1fb38edcbbfd775aac8672d1db382d6701ebdd1fc505ab0d485ead65ed94
SHA512

24172f048c952300b7339fd767434c2e4b75450c38898d52b280b7aa2f2ca68bafbe57deea38a450f74ed4940ba3016da91a2cef622e6f5abd07a4c4a838fddd
SSDEEP

3072:m96BW3XYJ6iB3aLlmblyd9PqvT6hNDK0reGMytqbkG+VdS3YzAKYywC:un3oJ6hLcblyd9PMyNDK0SG6b1+VUoNH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9fd3fadfaec437f248e0ad45a8c6128d_JaffaCakes118

Files

9fd3fadfaec437f248e0ad45a8c6128d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b4f1ce919a2d1106570201cf0f9b7f81

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

GetModuleFileNameA
GetEnvironmentVariableA
ExitProcess
FormatMessageA
GetLastError
SetLastError
GetProcAddress
VirtualProtect
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameW
GetVersionExA
VirtualFree
VirtualAlloc
GlobalAlloc
SetFilePointer
ReadFile
CreateFileA
LoadLibraryA

msvbvm60

ord581

Sections

.text
Size: 21KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE