b73c8902397cc2eaaabdfe6d81a18441_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b73c8902397cc2eaaabdfe6d81a18441_JaffaCakes118
Size

188KB
MD5

b73c8902397cc2eaaabdfe6d81a18441
SHA1

ad09bfe1940ec8899e9e5dabb039e7e3c0d3312e
SHA256

329f9c33a5b8787f0899ba554d99d47194f9b7c11958584174b82ff1bc47546d
SHA512

facf08e1d988966252493401854614291f69123b83d795db0a20bf4b009a47550a2e2ee5a935da44bd87412414c66b86c5e55dbdf2a1424789b9ebc57cdfa548
SSDEEP

3072:rT+1rhON6zroURtcVaS/a1ed7UFGaGjDmj99lmkxw718f858qh/ziWM45TNCY7:ohhzrPcVk4UFGbjgfm8fq/uX45TNCY7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b73c8902397cc2eaaabdfe6d81a18441_JaffaCakes118

Files

b73c8902397cc2eaaabdfe6d81a18441_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2ff2f0b9b5f8d8cbbb4fb675d641aded

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetModuleFileNameW
LockResource
LoadResource
FindResourceA
LoadLibraryA
VirtualFree
VirtualAlloc
FreeEnvironmentStringsW
FreeEnvironmentStringsA
RtlUnwind
HeapAlloc
HeapFree
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapDestroy
HeapCreate
HeapReAlloc
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
WriteFile
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
MultiByteToWideChar
LCMapStringA
LCMapStringW

user32

MessageBoxA

Sections

��N)ئߖ
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

R1��(
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�U��`^r
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�w��
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE