b33d932fccb2a0db37b79e1dd5a7188f_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b33d932fccb2a0db37b79e1dd5a7188f_JaffaCakes118
Size

114KB
MD5

b33d932fccb2a0db37b79e1dd5a7188f
SHA1

9fb916a546ef768e1f9bff8ff56278575daa8e19
SHA256

60addd97abc5ccb8c268f315b4e3ae45f6f64c02f7f67d7ef57bc6fe7a77fc2c
SHA512

f3fa15990778715995ff8a191c2d48809b82f0d8fec243c64b0e483c57e48c2df9d714d308c523760dc8f2339b3dd3fdc60b2f7fc2a13f0d3eb4cb6ab5914dee
SSDEEP

3072:/nkpdiOn+zWv5GOREN6FtVgjmBTc0U/B5e4AfFD80YWse:/ontv5VmctViG05elq0YWT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b33d932fccb2a0db37b79e1dd5a7188f_JaffaCakes118

Files

b33d932fccb2a0db37b79e1dd5a7188f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fdbfec85672f73d2a4d49635454936d4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress
GetModuleHandleA
LoadLibraryA
ExitProcess

user32

MessageBoxA

Sections

.text
Size: 40KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.perplex
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE