ad30e6c5fb1d5c9e5a23ecec2a479a11_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad30e6c5fb1d5c9e5a23ecec2a479a11_JaffaCakes118
Size

271KB
MD5

ad30e6c5fb1d5c9e5a23ecec2a479a11
SHA1

00c6b943ae328e3bb1e2738d850e586af2e19f3e
SHA256

24dccc78d6a33541b2872ce0f0fb86f1fd32e23a21a1d42b168bf81e9dcfb13b
SHA512

1dd8f019fb610f4d31c8512761462229e7162f86d0a224aa3a0316ba7c3a42ff133a4ca30d80b41b22fdbedd51c3cc1913f1e28a1ac4e323c0aadad694554e7b
SSDEEP

6144:dZ4Vdp/jA88Y734+61UipjrYnAZDR3APLsXC0Ujj:zUtIY7I51fjrYnAZBRS0U/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad30e6c5fb1d5c9e5a23ecec2a479a11_JaffaCakes118

Files

ad30e6c5fb1d5c9e5a23ecec2a479a11_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1ae2fa89405eb679f2ed36710e38feb1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetTickCount
FreeLibrary

user32

SetTimer
UpdateWindow
ShowWindow
CreateWindowExA
PostQuitMessage
EndPaint
BeginPaint
DefWindowProcA
PostMessageA
RegisterClassExA
DispatchMessageA
TranslateMessage
GetMessageA

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 235KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ