afb1291fe028ee67f4e3e25fd8437a48_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

afb1291fe028ee67f4e3e25fd8437a48_JaffaCakes118
Size

528KB
MD5

afb1291fe028ee67f4e3e25fd8437a48
SHA1

be809f27ca60a76c9800adcf94d8729a28000fdc
SHA256

1d1120f944a1443210d6cd85e52578c34852f6e7b480dc8a44a4d2fcfe02ad6d
SHA512

da76b7e7a2d1767db73ca1e3b5a25367e08ea3c7941a2bea2c51d362ac9d8debb1d1eb17628a5b95fc5e36b323b4d346ef54011b98b8b8e7d8733b108f3ba447
SSDEEP

6144:s9BhZC5zlD6XmsN5pCL07rYGTBtvujU6Xmsdup7m+XEmbOQcM:lZDRE58L0n/TbvujURsuJv0mbOQcM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afb1291fe028ee67f4e3e25fd8437a48_JaffaCakes118

Files

afb1291fe028ee67f4e3e25fd8437a48_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ae0a5112fe1176f4e5f6e1bc95e4c209

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

FreeLibrary
lstrcatA
GetModuleFileNameA
ExitProcess
LoadLibraryA
GetProcAddress
lstrlenA

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 1024B - Virtual size: 556B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 525KB - Virtual size: 525KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ