b27730009ab82ad8be1bddf968bec83c_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b27730009ab82ad8be1bddf968bec83c_JaffaCakes118
Size

948KB
MD5

b27730009ab82ad8be1bddf968bec83c
SHA1

b76fc1c0646d99cb03d8ee2a46095a23bb0e8393
SHA256

7f93c5f8610110d87ccb29a7d561e41897fa2c2c290fca562f5b7042dd523c20
SHA512

e62c14e2fd2cbc7f486ed8aa36712cae2b6fbf64f6bd4069c0b9177098ab82ad3a24bc901e0a064aa61b312bef1ead2a4e1d0a47cf3e20e2aa3ab7c1d67d1e09
SSDEEP

24576:uPEyRhqMXORPypci7FYbes7h8FramrVbESHAMOAqdQxn6q:MEy2yprYhSFrnJb1HfGQxn6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b27730009ab82ad8be1bddf968bec83c_JaffaCakes118

Files

b27730009ab82ad8be1bddf968bec83c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

22deaa3e5166e3019a02358581c9a9ee

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lopen
ExitProcess

user32

MessageBoxA

shell32

ShellExecuteA

Sections

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 812KB - Virtual size: 812KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

misswe
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE