bd51a78b2792bf23df44fe1bff1e5858_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd51a78b2792bf23df44fe1bff1e5858_JaffaCakes118
Size

51KB
MD5

bd51a78b2792bf23df44fe1bff1e5858
SHA1

299bf59a16bc98eff4f65cbbb1a3f3d407644341
SHA256

ce286caa71224accb19f05be3c41ed0cfb674a999c15755d9b31a785009a2bb6
SHA512

ec9ad53d6c0ca52bb62a8757cd4dbcceb41dfb6ee3bd03ea14b78b22a0edb218f2d2a3cbeee15d718fb0aa7295d89d8d306207159af1ff808df099015b465dd8
SSDEEP

1536:jgQwvNnAtPAboBUF2z0VKdNq8w4XNb60OnKQi:jrKJAMoBOlVx859bF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd51a78b2792bf23df44fe1bff1e5858_JaffaCakes118

Files

bd51a78b2792bf23df44fe1bff1e5858_JaffaCakes118
.exe windows:4 windows x86 arch:x86

541160bce55bf5030f1053d9ca2f310b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA

kernel32

ExitProcess

Sections

.code
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code1
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 40KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE