abfbec6f61c354c3f5e98b03a9e51bb0_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abfbec6f61c354c3f5e98b03a9e51bb0_JaffaCakes118
Size

106KB
MD5

abfbec6f61c354c3f5e98b03a9e51bb0
SHA1

3686669a5f952d920b3a8e8e127b7e993a2db65e
SHA256

d204b7801df8ad29fadc00629f09993ab4ddcd31071d0d66f77a7d2fd65287c1
SHA512

6047fc49aab6b7774afff3cc890810f3b9a35ecdaab265b8b5a11549c172794d2ace2d3a36782e5f4d9d9e80300f381e3904232e1a2370a4d079980a9ea2750b
SSDEEP

1536:3Sd3FBMfnxd7RgjSlhUmgeqnzqFCmfoTwIkDqmLny22BW0LZnluGSaN6:sAxlvhUkhqm2nBWUZl0a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abfbec6f61c354c3f5e98b03a9e51bb0_JaffaCakes118

Files

abfbec6f61c354c3f5e98b03a9e51bb0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ebf6f8781679b3789b7a250d8a18482a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
CharNextA

kernel32

Sleep
VirtualAlloc
GetLastError
VirtualFree
ExitProcess

Sections

.text
Size: 512B - Virtual size: 212B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dsfwer
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ