b6e84cde242fda9fb8fe325f01bf6df6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6e84cde242fda9fb8fe325f01bf6df6_JaffaCakes118
Size

440KB
MD5

b6e84cde242fda9fb8fe325f01bf6df6
SHA1

186dc73180156db1dd86ef1264e86a426e04f456
SHA256

cdb96713637b92e14d40a8e23e7d89e07311ba312236cea60ed77c6730a1da93
SHA512

75880dcc1cab95514e919cc99b71912f0d9a3cdc999ea3d68d01349e774c054e409474d1e7653b5921e0339c50c2cb2d1242a5534abf418ed56185857684bd0c
SSDEEP

12288:MDUBJUoN7WxuzaA55fUvvwvvQtbLe1jagMHm:MMJjN7rnavwn6LeSHm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6e84cde242fda9fb8fe325f01bf6df6_JaffaCakes118

Files

b6e84cde242fda9fb8fe325f01bf6df6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

820ab24e53af2dbafc74d24f87e40262

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

comctl32

InitCommonControls

kernel32

LoadLibraryA
GetProcAddress

Sections

.rsrc
Size: 123KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 249KB - Virtual size: 848KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE