ae92aa59ddd88b741b9bdd0e0e7c2f3d_JaffaCakes118 | Triage

Sharing

General

Target

ae92aa59ddd88b741b9bdd0e0e7c2f3d_JaffaCakes118
Size

165KB
MD5

ae92aa59ddd88b741b9bdd0e0e7c2f3d
SHA1

afbfc463e59ee98a15ed55e5015436d8c38146bf
SHA256

2ed7f5475fe8d2a99c38a8b4e71b891a005d4fc38908bd407e9678b89de4cad3
SHA512

1e47c0a71c568c8b6915e5de98a48e75e3d985989cebfb6e5f70adae7a0b0bb3c9136eb1937078d7a440696b524ac2090ae9d02063521231a3853fe91631ed99
SSDEEP

3072:doRDYwCMDZpX+/XYMNqXuxeLVRZ5aRw3mefGbdbOW0jBiMoL0uGDyDdF0NJ:dUpCMD3X+FNaV4KJwxf0cMoL0uA2dF0r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae92aa59ddd88b741b9bdd0e0e7c2f3d_JaffaCakes118

Files

ae92aa59ddd88b741b9bdd0e0e7c2f3d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f433e7fcc51e68080022754836705744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree

user32

MessageBoxA

Sections

.text
Size: - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ev73vtp2
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

hj9qe8kp
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kgbikm34
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

y3hmw1t3
Size: 156KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

gwlw3lo.
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ