b332639ffe00c2cbf126e90385eaa670_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b332639ffe00c2cbf126e90385eaa670_JaffaCakes118
Size

52KB
MD5

b332639ffe00c2cbf126e90385eaa670
SHA1

a7e2262c11394d2da0123a8ac5b90a2c3c2adddd
SHA256

95ca2ee6f7d7407f7140800dfd756f6c4a9da51e78383e65e8d66c33edac7e93
SHA512

4b45db2eb2a81ba0f3f46484e60c2b7f9a8468c4bb01b87fa8dde3ddbe9e502a847b3952adf14271c40208e603f044dd65c848aba2520ad7e000a5969652e6d1
SSDEEP

768:s9EZim1pcirq0bZ8kXSzSJMen164dv8Y53mj8dXA6kYVI2tPrk8TWCtkNor5eW:sUimHBJN9Oe11t8ImLoprzb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b332639ffe00c2cbf126e90385eaa670_JaffaCakes118

Files

b332639ffe00c2cbf126e90385eaa670_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3b6e3b0f276cd8981b021d6bbced6749

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess
GetSystemTimeAsFileTime
CloseHandle
GetStartupInfoA
GetModuleHandleA

advapi32

RegQueryValueA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 36KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ