a106658f990cd7d87b352307dc222769_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a106658f990cd7d87b352307dc222769_JaffaCakes118
Size

52KB
MD5

a106658f990cd7d87b352307dc222769
SHA1

97e900f6351fb1a2be2f6461865e12f3d0d1ac8b
SHA256

f49b4c9f77a69cf4d2aaaceb11f3565db9c1beb25709673d4278da4da9361a54
SHA512

96fe2877de26c918c4ba2ff58cafb61250ddd668968206a7fc6b0aa4cfca1c1a1eaca315fc02633ba86a673025d7d7b55ae02e4e23b7b40370007f68ff53c5df
SSDEEP

768:cyvFIErp+eyWwOzeA2g8GiXXR+f3lWqlbTW43cQjNHexy8WXN+NDSNozit:cyvlp+eyWaAXiEVW4M2NHe0x8uiz4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a106658f990cd7d87b352307dc222769_JaffaCakes118

Files

a106658f990cd7d87b352307dc222769_JaffaCakes118
.exe windows:4 windows x86 arch:x86

372cb1afc2a93c932bf474b9fcb8cb7f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LocalAlloc
LocalFree
GetProcAddress
ExitProcess
LoadLibraryA
GetModuleHandleA
VirtualFree
VirtualProtect
VirtualAlloc
GetModuleFileNameA

user32

wsprintfA
MessageBoxA

Sections

.data
Size: 44KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 5KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.asprsc
Size: 496B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ